Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/pcre2@10.36-2%2Bdeb11u1
purl pkg:deb/debian/pcre2@10.36-2%2Bdeb11u1
Next non-vulnerable version 10.42-1
Latest non-vulnerable version 10.42-1
Risk 2.4
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-puhw-2qwq-gqet
Aliases:
CVE-2022-41409
Integer Overflow or Wraparound Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input.
10.42-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (3)
Vulnerability Summary Aliases
VCID-n3na-8bf2-r3gv Out-of-bounds Read An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers. CVE-2022-1587
VCID-nhna-bk28-t3ex Out-of-bounds Read An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT. CVE-2022-1586
VCID-sqxs-v4xg-5kd8 A vulnerability in PCRE2 could lead to a Denial of Service condition. CVE-2019-20454

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T09:22:48.166897+00:00 Debian Importer Affected by VCID-puhw-2qwq-gqet https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-15T23:26:42.053416+00:00 Debian Oval Importer Fixing VCID-sqxs-v4xg-5kd8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:19:45.063806+00:00 Debian Oval Importer Fixing VCID-nhna-bk28-t3ex https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T17:04:37.364876+00:00 Debian Oval Importer Fixing VCID-n3na-8bf2-r3gv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-11T23:02:05.216388+00:00 Debian Oval Importer Fixing VCID-sqxs-v4xg-5kd8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:03:04.548758+00:00 Debian Oval Importer Fixing VCID-nhna-bk28-t3ex https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:15:48.029498+00:00 Debian Importer Affected by VCID-puhw-2qwq-gqet https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T16:51:08.305728+00:00 Debian Oval Importer Fixing VCID-n3na-8bf2-r3gv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T22:36:00.457673+00:00 Debian Oval Importer Fixing VCID-sqxs-v4xg-5kd8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:47:30.268790+00:00 Debian Oval Importer Fixing VCID-nhna-bk28-t3ex https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T16:41:11.068000+00:00 Debian Oval Importer Fixing VCID-n3na-8bf2-r3gv https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-04T18:02:46.540910+00:00 Debian Importer Affected by VCID-puhw-2qwq-gqet https://security-tracker.debian.org/tracker/data/json 38.1.0