[3.0] pcre: Several vulnerabilities (CVE-2014-9769, CVE-2015-2327, CVE-2015-2328, CVE-2015-8382)
CVE-2014-9769: incorrect nested table jumps when JIT is used.
Fixed in version:
pcre 8.36
References:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9769
https://bugzilla.redhat.com/show\_bug.cgi?id=CVE-2014-9769
Patch:
http://vcs.pcre.org/pcre?view=revision&revision=1475
CVE-2015-2327: infinite recursion compiling pattern with zero-repeated groups that include recursive back reference.
Fixed in version:
pcre 8.36
References:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2327
https://bugzilla.redhat.com/show\_bug.cgi?id=1285408
Patch:
http://vcs.pcre.org/pcre?view=revision&revision=1495
CVE-2015-2328: infinite recursion compiling pattern with recursive reference in a group with indefinite repeat
Fixed in version:
pcre 8.36
References:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2328
https://bugzilla.redhat.com/show\_bug.cgi?id=CVE-2015-2328
Patch:
http://vcs.pcre.org/pcre?view=revision&revision=1498
CVE-2015-8382: The match function in pcre_exec.c in PCRE before
8.37 mishandles the
/(?:((abcd))|(((?:(?:(?:(?:abc|(?:abcdef))))b)abcdefghi)abc)|((*ACCEPT)))/
pattern and related patterns involving (*ACCEPT), which allows remote
attackers to obtain sensitive information from process memory or cause a
denial of service
(partially initialized memory and application crash) via a crafted
regular expression, as demonstrated by a JavaScript RegExp object
encountered by Konqueror, aka ZDI-CAN-2547.
References:
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8382
Patch:
http://vcs.pcre.org/pcre/code/trunk/pcre\_exec.c?r1=1502&r2=1510
(from redmine: issue id 5466, created on 2016-04-21, closed on 2016-05-10)
- Relations:
- parent #5464 (closed)
- Changesets:
- Revision 1e470988 on 2016-05-09T12:17:34Z:
main/pcre: several fixes including CVEs
Fixes #5476
Fixes #5470
Fixes #5466
CVE-2016-1283
CVE-2016-3191
CVE-2015-8380
CVE-2015-8381
CVE-2015-8383
CVE-2015-8384
CVE-2015-8392
CVE-2015-8393
CVE-2015-8394
CVE-2015-8382
(cherry picked from commit ae07363ba5d06022ffa7d161ab322fae828b7600)
Conflicts:
main/pcre/APKBUILD