rpm package
suse/pcre2&distro=SUSE Linux Enterprise Micro 5.2
pkg:rpm/suse/pcre2&distro=SUSE%20Linux%20Enterprise%20Micro%205.2
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-41409 | — | < 10.31-150000.3.15.1 | 10.31-150000.3.15.1 | Jul 18, 2023 | Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input. | ||
| CVE-2022-1587 | — | < 10.31-150000.3.12.1 | 10.31-150000.3.12.1 | May 16, 2022 | An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers. | ||
| CVE-2022-1586 | — | < 10.31-150000.3.7.1 | 10.31-150000.3.7.1 | May 16, 2022 | An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was n | ||
| CVE-2019-20454 | — | < 10.31-150000.3.12.1 | 10.31-150000.3.12.1 | Feb 14, 2020 | An out-of-bounds read was discovered in PCRE before 10.34 when the pattern \X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to crash t |
- CVE-2022-41409Jul 18, 2023affected < 10.31-150000.3.15.1fixed 10.31-150000.3.15.1
Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input.
- CVE-2022-1587May 16, 2022affected < 10.31-150000.3.12.1fixed 10.31-150000.3.12.1
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.
- CVE-2022-1586May 16, 2022affected < 10.31-150000.3.7.1fixed 10.31-150000.3.7.1
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was n
- CVE-2019-20454Feb 14, 2020affected < 10.31-150000.3.12.1fixed 10.31-150000.3.12.1
An out-of-bounds read was discovered in PCRE before 10.34 when the pattern \X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to crash t