pcre3 2:8.35-7.1ubuntu1.3 source package in Ubuntu
Changelog
pcre3 (2:8.35-7.1ubuntu1.3) wily-security; urgency=medium
* SECURITY UPDATE: fix multiple security issues by applying patches
from Debian jessie package:
- CVE-2015-2325_CVE-2015-2326_CVE-2015-3210_CVE-2015-5073.patch
- 0001-Fix-compile-time-loop-for-recursive-reference-within.patch
- 794589-information-disclosure.patch
- 0001-Fix-buffer-overflow-for-repeated-conditional-when-re.patch
- 0001-Fix-named-forward-reference-to-duplicate-group-numbe.patch
- 0001-Fix-buffer-overflow-for-lookbehind-within-mutually-r.patch
- 0001-Add-integer-overflow-check-to-n-code.patch
- 0001-Fix-overflow-when-ovector-has-size-1.patch
- 0001-Fix-infinite-recursion-in-the-JIT-compiler-when-cert.patch
- 0001-Fix-bug-for-classes-containing-sequences.patch
- 0001-Fix-run-for-ever-bug-for-deeply-nested-sequences.patch
- 0001-Fix-buffer-overflow-for-named-references-in-situatio.patch
- 0001-Make-pcregrep-q-override-l-and-c-for-compatibility-w.patch
- 0001-Add-missing-integer-overflow-checks.patch
- 0001-Hack-in-yet-other-patch-for-a-bug-in-size-computatio.patch
- Removed obsolete fix_find_fixedlength.patch
- debian/patches/fix_test11.patch: fix test failure caused by
0001-Fix-buffer-overflow-for-named-references-in-situatio.patch.
- debian/patches/fix_typo_in_jit.patch: fix typo in commit in
0001-Fix-infinite-recursion-in-the-JIT-compiler-when-cert.patch.
- CVE-2015-2325, CVE-2015-2326, CVE-2015-2327, CVE-2015-2328,
CVE-2015-3210, CVE-2015-5073, CVE-2015-8380, CVE-2015-8381,
CVE-2015-8382, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385,
CVE-2015-8386, CVE-2015-8387, CVE-2015-8388, CVE-2015-8389,
CVE-2015-8390, CVE-2015-8391, CVE-2015-8392, CVE-2015-8393,
CVE-2015-8394, CVE-2015-8395
* SECURITY UPDATE: denial of service and possible code execution via
crafted regular expression
- debian/patches/CVE-2016-1283.patch: fix another duplicate name issue
in pcre_compile.c, add tests to testdata/testinput2,
testdata/testoutput2.
- CVE-2016-1283
* SECURITY UPDATE: denial of service via pattern containing (*ACCEPT)
substring with nested parantheses
- debian/patches/apply-upstream-revision-1631-closes-8159: fix
workspace overflow for (*ACCEPT) with deeply nested parentheses in
pcreposix.c, pcre_compile.c, pcre_internal.h, add tests to
testdata/testoutput11-8, testdata/testoutput11-16,
testdata/testinput11, testdata/testoutput11-32.
- CVE-2016-3191
* SECURITY UPDATE: nested alternatives segfault when JIT is used
- debian/patches/CVE-2014-9769.patch: fixed issue with nested table
jumps in pcre_jit_compile.c, added test to testdata/testinput1,
testdata/testoutput1.
- CVE-2014-9769
-- Marc Deslauriers <email address hidden> Tue, 29 Mar 2016 08:24:03 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Wily
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| pcre3_8.35.orig.tar.gz | 1.9 MiB | 1c9ee292943ba2737f127b481a3f72f44c13fbd09a7b5b4eb8fa58650cfa56a0 |
| pcre3_8.35-7.1ubuntu1.3.debian.tar.gz | 41.8 KiB | 14eaa3929f73f51aa64525df9ff23d601c8c97dce1a55326d6a5fcb8f91171ec |
| pcre3_8.35-7.1ubuntu1.3.dsc | 2.1 KiB | f43d8d1ddbd50cae62bc32f647163ab8b0803928f9978ba70491a091f66f9a0c |
Available diffs
Binary packages built by this source
- libpcre16-3: No summary available for libpcre16-3 in ubuntu wily.
No description available for libpcre16-3 in ubuntu wily.
- libpcre16-3-dbgsym: No summary available for libpcre16-3-dbgsym in ubuntu wily.
No description available for libpcre16-3-dbgsym in ubuntu wily.
- libpcre3: No summary available for libpcre3 in ubuntu wily.
No description available for libpcre3 in ubuntu wily.
- libpcre3-dbg: No summary available for libpcre3-dbg in ubuntu wily.
No description available for libpcre3-dbg in ubuntu wily.
- libpcre3-dbgsym: No summary available for libpcre3-dbgsym in ubuntu wily.
No description available for libpcre3-dbgsym in ubuntu wily.
- libpcre3-dev: No summary available for libpcre3-dev in ubuntu wily.
No description available for libpcre3-dev in ubuntu wily.
- libpcre3-dev-dbgsym: No summary available for libpcre3-dev-dbgsym in ubuntu wily.
No description available for libpcre3-dev-dbgsym in ubuntu wily.
- libpcre3-udeb: No summary available for libpcre3-udeb in ubuntu wily.
No description available for libpcre3-udeb in ubuntu wily.
- libpcre3-udeb-dbgsym: No summary available for libpcre3-udeb-dbgsym in ubuntu wily.
No description available for libpcre3-
udeb-dbgsym in ubuntu wily.
- libpcre32-3: No summary available for libpcre32-3 in ubuntu wily.
No description available for libpcre32-3 in ubuntu wily.
- libpcre32-3-dbgsym: No summary available for libpcre32-3-dbgsym in ubuntu wily.
No description available for libpcre32-3-dbgsym in ubuntu wily.
- libpcrecpp0v5: No summary available for libpcrecpp0v5 in ubuntu wily.
No description available for libpcrecpp0v5 in ubuntu wily.
- libpcrecpp0v5-dbgsym: No summary available for libpcrecpp0v5-dbgsym in ubuntu wily.
No description available for libpcrecpp0v5-
dbgsym in ubuntu wily.
- pcregrep: No summary available for pcregrep in ubuntu wily.
No description available for pcregrep in ubuntu wily.
- pcregrep-dbgsym: No summary available for pcregrep-dbgsym in ubuntu wily.
No description available for pcregrep-dbgsym in ubuntu wily.
