Showing 1 - 5 of 5

CVE-2015-2325

Status Candidate

Overview

The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier.

Related Files

Red Hat Security Advisory 2016-2750-01: Posted Nov 15, 2016; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2016-2750-01 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. The memcache, mongo, and XDebug extensions are also included. The rh-php56 Software Collection has been upgraded to version 5.6.25, which provides a number of bug fixes and enhancements over the previous version. Security Fixes in the rh-php56-php component have been added.; tags | advisory, web, php; systems | linux, redhat; advisories | CVE-2013-7456, CVE-2014-9767, CVE-2015-2325, CVE-2015-2326, CVE-2015-2327, CVE-2015-2328, CVE-2015-3210, CVE-2015-3217, CVE-2015-5073, CVE-2015-8381, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385, CVE-2015-8386, CVE-2015-8388, CVE-2015-8391, CVE-2015-8392, CVE-2015-8395, CVE-2015-8835, CVE-2015-8865, CVE-2015-8866, CVE-2015-8867, CVE-2015-8873, CVE-2015-8874, CVE-2015-8876, CVE-2015-8877, CVE-2015-8879, CVE-2016-1903; MD5 | 212c6ace5b1922e09d6bbc3fa03bbe65; Download | Favorite | View

Ubuntu Security Notice USN-2943-1: Posted Mar 29, 2016; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2943-1 - It was discovered that PCRE incorrectly handled certain regular expressions. A remote attacker could use this issue to cause applications using PCRE to crash, resulting in a denial of service, or possibly execute arbitrary code.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2014-9769, CVE-2015-2325, CVE-2015-2326, CVE-2015-2327, CVE-2015-2328, CVE-2015-3210, CVE-2015-5073, CVE-2015-8380, CVE-2015-8381, CVE-2015-8382, CVE-2015-8383, CVE-2015-8384, CVE-2015-8385, CVE-2015-8386, CVE-2015-8387, CVE-2015-8388, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8392, CVE-2015-8393, CVE-2015-8394, CVE-2015-8395, CVE-2016-1283, CVE-2016-3191; MD5 | fbd3b35e5c2cb6aa570e6b56ca4e42d5; Download | Favorite | View

Ubuntu Security Notice USN-2694-1: Posted Aug 3, 2015; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2694-1 - Michele Spagnuolo discovered that PCRE incorrectly handled certain regular expressions. A remote attacker could use this issue to cause applications using PCRE to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. Kai Lu discovered that PCRE incorrectly handled certain regular expressions. A remote attacker could use this issue to cause applications using PCRE to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS and Ubuntu 15.04. Various other issues were also addressed.; tags | advisory, remote, denial of service, arbitrary; systems | linux, ubuntu; advisories | CVE-2014-8964, CVE-2015-2325, CVE-2015-2326, CVE-2015-3210, CVE-2015-5073; MD5 | 929dd89ed428276bbbbb66a1bbd4ae22; Download | Favorite | View

Slackware Security Advisory - php Updates: Posted Jul 20, 2015; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues.; tags | advisory, php; systems | linux, slackware; advisories | CVE-2015-2325, CVE-2015-2326, CVE-2015-3152, CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-4642, CVE-2015-4643, CVE-2015-4644; MD5 | 70a94755c361aa56cdad823113ed5d41; Download | Favorite | View

Slackware Security Advisory - php Updates: Posted Jun 12, 2015; Authored by Slackware Security Team | Site slackware.com; Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues.; tags | advisory, php; systems | linux, slackware; advisories | CVE-2006-7243, CVE-2015-2325, CVE-2015-2326, CVE-2015-4021, CVE-2015-4022, CVE-2015-4024, CVE-2015-4025, CVE-2015-4026; MD5 | 6660c288fd43787965cfe1f0492a8995; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 141 files
Ubuntu 70 files
LiquidWorm 14 files
Google Security Research 10 files
Gentoo 8 files
George Tsimpidas 5 files
Alexei Kojenov 5 files
Glazvunov 4 files
Ankita Pal 4 files
Rahul Ramkumar 4 files

File Archives

Systems

AIX (418)
Apple (1,741)
BSD (368)
Cisco (1,898)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (3,952)
HPUX (872)
iOS (274)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (38,590)
Mac OS X (669)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,154)
Slackware (941)
Solaris (1,593)
SUSE (1,444)
Ubuntu (6,920)
UNIX (8,756)
UnixWare (179)
Windows (5,674)
Other

CVE-2015-2325

Overview

Related Files

File Archive:

October 2020

Top Authors In Last 30 Days

File Tags

File Archives

Systems