[Secure-testing-team] Bug#790000: pcre3: heap overflow vulnerability in find_fixedlength()
Salvatore Bonaccorso
carnil at debian.org
Fri Jun 26 05:27:38 UTC 2015
Source: pcre3
Version: 1:8.30-5
Severity: important
Tags: security upstream patch fixed-upstream
Hi
A new heap overflow vulnerability was found in pcre3, in
find_fixedlenght(). See:
https://bugs.exim.org/show_bug.cgi?id=1651
http://vcs.pcre.org/pcre?view=revision&revision=1571
A CVE has been requested at
http://www.openwall.com/lists/oss-security/2015/06/26/1
Regards,
Salvatore
More information about the Secure-testing-team
mailing list