Oracle alert ELSA-2016-1025 (pcre)
| From: | Errata Announcements for Oracle Linux <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2016-1025 Important: Oracle Linux 7 pcre security update | |
| Date: | Wed, 11 May 2016 10:51:08 -0700 | |
| Message-ID: | <5733710B.7000008@oracle.com> |
Oracle Linux Security Advisory ELSA-2016-1025 http://linux.oracle.com/errata/ELSA-2016-1025.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: x86_64: pcre-8.32-15.el7_2.1.i686.rpm pcre-8.32-15.el7_2.1.x86_64.rpm pcre-devel-8.32-15.el7_2.1.i686.rpm pcre-devel-8.32-15.el7_2.1.x86_64.rpm pcre-static-8.32-15.el7_2.1.i686.rpm pcre-static-8.32-15.el7_2.1.x86_64.rpm pcre-tools-8.32-15.el7_2.1.x86_64.rpm SRPMS: http://oss.oracle.com/ol7/SRPMS-updates/pcre-8.32-15.el7_... Description of changes: [8.32-15.1] - Fix CVE-2015-2328 (infinite recursion compiling pattern with recursive reference in a group with indefinite repeat) (bug #1330508) - Fix CVE-2015-8385 (buffer overflow caused by named forward reference to duplicate group number) (bug #1330508) - Fix CVE-2015-8386 (buffer overflow caused by lookbehind assertion) (bug #1330508) - Fix CVE-2015-3217 (stack overflow caused by mishandled group empty match) (bug #1330508) - Fix CVE-2015-5073 and CVE-2015-8388 (buffer overflow for forward reference within backward assertion with excess closing parenthesis) (bug #1330508) - Fix CVE-2015-8391 (inefficient posix character class syntax check) (bug #1330508) - Fix CVE-2016-3191 (workspace overflow for (*ACCEPT) with deeply nested parentheses) (bug #1330508) _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata