Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#45945 - [pcre] PCRE Library Heap Overflow Vulnerability
Attached to Project:
Arch Linux
Opened by Jens Adam (byte) - Monday, 10 August 2015, 14:48 GMT
Last edited by Sébastien Luttringer (seblu) - Saturday, 15 August 2015, 18:11 GMT
Opened by Jens Adam (byte) - Monday, 10 August 2015, 14:48 GMT
Last edited by Sébastien Luttringer (seblu) - Saturday, 15 August 2015, 18:11 GMT
|
Details(via DFN-CERT, via Fedora)
Upstream bug: https://bugs.exim.org/show_bug.cgi?id=1667 Fedora bug: https://bugzilla.redhat.com/show_bug.cgi?id=1250943 CVE request: http://seclists.org/oss-sec/2015/q3/295 Patches: http://pkgs.fedoraproject.org/cgit/pcre.git/commit/?id=7da5705443a768fd34cf13475e6a7dca2373b108 |
This task depends upon
Closed by Sébastien Luttringer (seblu)
Saturday, 15 August 2015, 18:11 GMT
Reason for closing: Fixed
Additional comments about closing: pcre-8.37-3
Saturday, 15 August 2015, 18:11 GMT
Reason for closing: Fixed
Additional comments about closing: pcre-8.37-3