|
|
Family: Ubuntu Local Security Checks --> Category: infos
USN173-1 : pcre3 vulnerability Vulnerability Scan
Vulnerability Scan Summary
pcre3 vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- libpcre3
- libpcre3-dev
- pcregrep
- pgrep
Description :
A buffer overflow has been discovered in the PCRE, a widely used
library that provides Perl compatible regular expressions. Specially
crafted regular expressions triggered a buffer overflow. On systems
that accept arbitrary regular expressions from untrusted users, this
could be exploited to execute arbitrary code with the rights of
the application using the library.
Solution :
Upgrade to :
- libpcre3-4.5-1.1ubuntu0.5.04 (Ubuntu 5.04)
- libpcre3-dev-4.5-1.1ubuntu0.5.04 (Ubuntu 5.04)
- pcregrep-4.5-1.1ubuntu0.5.04 (Ubuntu 5.04)
- pgrep-4.5-1.1ubuntu0.5.04 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
