MDVSA-2008:147 -- Mandriva pcreID: oval:org.secpod.oval:def:301569 | Date: (C)2012-01-07 (M)2022-08-01 |
Class: PATCH | Family: unix |
Tavis Ormandy of the Google Security Team discovered a heap-based buffer overflow when compiling certain regular expression patterns. This could be used by a malicious attacker by sending a specially crafted regular expression to an application using the PCRE library, resulting in the possible execution of arbitrary code or a denial of service . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Linux 2007.1 |
Mandriva Linux 2008.1 |
Mandriva Linux 2008.0 |