VulnerableCode Package Details - pkg:deb/debian/pcre2@10.32-5

Search for packages

Vulnerability	Summary	Fixed by
VCID-n3na-8bf2-r3gv Aliases: CVE-2022-1587	Out-of-bounds Read An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.	10.36-2+deb11u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-nhna-bk28-t3ex Aliases: CVE-2022-1586	Out-of-bounds Read An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT.	10.36-2+deb11u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-sqxs-v4xg-5kd8 Aliases: CVE-2019-20454	A vulnerability in PCRE2 could lead to a Denial of Service condition.	10.36-2+deb11u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-n3na-8bf2-r3gv
Aliases:
CVE-2022-1587

Out-of-bounds Read An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.

10.36-2+deb11u1
Affected by 1 other vulnerability.

VCID-nhna-bk28-t3ex
Aliases:
CVE-2022-1586

Out-of-bounds Read An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT.

10.36-2+deb11u1
Affected by 1 other vulnerability.

VCID-sqxs-v4xg-5kd8
Aliases:
CVE-2019-20454

A vulnerability in PCRE2 could lead to a Denial of Service condition.

10.36-2+deb11u1
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
VCID-hvre-wgyt-23dz	Improper Restriction of Operations within the Bounds of a Memory Buffer pcre2test.c in PCRE2 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression.	CVE-2017-8786

Vulnerability

Summary

Aliases

VCID-hvre-wgyt-23dz

Improper Restriction of Operations within the Bounds of a Memory Buffer pcre2test.c in PCRE2 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression.

CVE-2017-8786

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:26:42.050196+00:00	Debian Oval Importer	Affected by	VCID-sqxs-v4xg-5kd8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:05:32.259670+00:00	Debian Oval Importer	Fixing	VCID-hvre-wgyt-23dz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:19:45.060198+00:00	Debian Oval Importer	Affected by	VCID-nhna-bk28-t3ex	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:04:37.361265+00:00	Debian Oval Importer	Affected by	VCID-n3na-8bf2-r3gv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-11T23:02:05.212887+00:00	Debian Oval Importer	Affected by	VCID-sqxs-v4xg-5kd8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:41:37.504087+00:00	Debian Oval Importer	Fixing	VCID-hvre-wgyt-23dz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:03:04.544613+00:00	Debian Oval Importer	Affected by	VCID-nhna-bk28-t3ex	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:51:08.301386+00:00	Debian Oval Importer	Affected by	VCID-n3na-8bf2-r3gv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T22:36:00.455612+00:00	Debian Oval Importer	Affected by	VCID-sqxs-v4xg-5kd8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:16:41.782471+00:00	Debian Oval Importer	Fixing	VCID-hvre-wgyt-23dz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T18:47:30.264761+00:00	Debian Oval Importer	Affected by	VCID-nhna-bk28-t3ex	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:41:11.063072+00:00	Debian Oval Importer	Affected by	VCID-n3na-8bf2-r3gv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0