diff options
| author | simon <simon@FreeBSD.org> | 2005-08-27 05:24:31 +0800 |
|---|---|---|
| committer | simon <simon@FreeBSD.org> | 2005-08-27 05:24:31 +0800 |
| commit | 1daabf96be49db4d2558e13b0924dc8e6692e57d (patch) | |
| tree | 97c9ca6ef31d1a44aede7dde812eb813950c5ffc /security | |
| parent | 38ae03cd975789fac97ca8b85a297fc3684619d1 (diff) | |
| download | freebsd-ports-gnome-1daabf96be49db4d2558e13b0924dc8e6692e57d.tar.gz freebsd-ports-gnome-1daabf96be49db4d2558e13b0924dc8e6692e57d.tar.zst freebsd-ports-gnome-1daabf96be49db4d2558e13b0924dc8e6692e57d.zip | |
Document pcre -- regular expression buffer overflow.
Approved by: portmgr (blanket, VuXML)
Diffstat (limited to 'security')
| -rw-r--r-- | security/vuxml/vuln.xml | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index a19aa3599a6b..96fb5e3f4ca4 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -32,6 +32,35 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="b971d2a6-1670-11da-978e-0001020eed82"> + <topic>pcre -- regular expression buffer overflow</topic> + <affects> + <package> + <name>pcre</name> + <name>pcre-utf8</name> + <range><lt>6.2</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The pcre library is vulnerable to a buffer overflow + vulnerability due to insufficient validation of quantifier + values. This could lead execution of arbitrary code with + the permissions of the program using pcre by way of a + specially crated regular expression.</p> + </body> + </description> + <references> + <bid>14620</bid> + <cvename>CAN-2005-2491</cvename> + <url>http://www.pcre.org/changelog.txt</url> + </references> + <dates> + <discovery>2005-08-01</discovery> + <entry>2005-08-26</entry> + </dates> + </vuln> + <vuln vid="f66e011d-13ff-11da-af41-0004614cc33d"> <topic>elm -- remote buffer overflow in Expires header</topic> <affects> |