Search for packages
Package details: pkg:deb/debian/pcre2@10.22-3
purl pkg:deb/debian/pcre2@10.22-3
Next non-vulnerable version 10.42-1
Latest non-vulnerable version 10.42-1
Risk 4.4
Vulnerabilities affecting this package (4)
Vulnerability Summary Fixed by
VCID-dt72-wk6f-aaam
Aliases:
CVE-2022-1586
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT.
10.36-2+deb11u1
Affected by 1 other vulnerability.
VCID-jcnx-yyhm-aaab
Aliases:
CVE-2019-20454
Out-of-bounds Read An out-of-bounds read was discovered in PCRE when the pattern \X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to crash the application. The flaw occurs in do_extuni_no_utf in pcre2_jit_compile.c.
10.36-2+deb11u1
Affected by 1 other vulnerability.
VCID-mp42-affv-aaad
Aliases:
CVE-2022-1587
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.
10.36-2+deb11u1
Affected by 1 other vulnerability.
VCID-ptm9-5wpw-aaaf
Aliases:
CVE-2017-8786
Improper Restriction of Operations within the Bounds of a Memory Buffer pcre2test.c in PCRE2 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression.
10.32-5
Affected by 4 other vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-hyp6-74p8-aaap libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode property lookup. CVE-2017-7186
VCID-zghf-77cd-aaaj The compile_branch function in pcre_compile.c in PCRE 8.x before 8.39 and pcre2_compile.c in PCRE2 before 10.22 mishandles patterns containing an (*ACCEPT) substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, aka ZDI-CAN-3542. CVE-2016-3191

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-22T02:38:23.297465+00:00 Debian Importer Affected by VCID-mp42-affv-aaad None 36.1.3
2025-06-21T19:16:52.031296+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.3
2025-06-21T17:46:33.624878+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:21:05.273492+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T15:20:34.667048+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:49:51.401818+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:59:18.272912+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:02:47.331727+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T05:04:50.295933+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 36.1.3
2025-06-21T05:00:03.738204+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad None 36.1.3
2025-06-21T03:07:04.878131+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam None 36.1.3
2025-06-21T02:23:31.680402+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab None 36.1.3
2025-06-21T01:18:13.663160+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj None 36.1.3
2025-06-20T23:35:16.406234+00:00 Debian Importer Affected by VCID-dt72-wk6f-aaam None 36.1.3
2025-06-20T23:31:46.858347+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf None 36.1.3
2025-06-20T20:36:28.336991+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap None 36.1.3
2025-06-08T13:15:11.796603+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T13:10:03.282099+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T11:45:38.424952+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T10:19:36.506687+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:15:15.640077+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T08:14:42.539221+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:44:01.592385+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:54:15.318300+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:11:29.400675+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T22:37:29.131632+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad None 36.1.0
2025-06-07T20:39:51.056282+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam None 36.1.0
2025-06-07T19:47:23.940909+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab None 36.1.0
2025-06-07T18:40:57.416032+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj None 36.1.0
2025-06-07T16:54:42.329131+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf None 36.1.0
2025-06-07T14:09:03.099875+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap None 36.1.0
2025-04-12T21:35:07.457479+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T21:21:44.166589+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:52:19.197872+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:03:06.900079+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T18:57:45.017776+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T17:30:31.882095+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T16:00:33.121202+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:46:55.553729+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T06:46:24.588796+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:16:31.100095+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T04:26:07.188879+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:42:26.668869+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T21:09:09.149782+00:00 Debian Oval Importer Affected by VCID-mp42-affv-aaad None 36.0.0
2025-04-07T19:10:19.185763+00:00 Debian Oval Importer Affected by VCID-dt72-wk6f-aaam None 36.0.0
2025-04-07T18:25:12.669811+00:00 Debian Oval Importer Affected by VCID-jcnx-yyhm-aaab None 36.0.0
2025-04-07T17:18:46.342498+00:00 Debian Oval Importer Fixing VCID-zghf-77cd-aaaj None 36.0.0
2025-04-07T15:27:41.350669+00:00 Debian Oval Importer Affected by VCID-ptm9-5wpw-aaaf None 36.0.0
2025-04-07T12:42:30.410135+00:00 Debian Oval Importer Fixing VCID-hyp6-74p8-aaap None 36.0.0
2025-04-06T22:45:16.182932+00:00 Debian Importer Affected by VCID-ptm9-5wpw-aaaf None 36.0.0
2025-04-05T21:06:18.408903+00:00 Debian Importer Affected by VCID-mp42-affv-aaad None 36.0.0
2025-04-04T07:54:12.704960+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 36.0.0
2025-04-04T02:16:11.512803+00:00 Debian Importer Affected by VCID-dt72-wk6f-aaam None 36.0.0
2025-02-20T15:02:49.499819+00:00 Debian Importer Affected by VCID-mp42-affv-aaad None 35.1.0
2025-02-20T15:02:46.603900+00:00 Debian Importer Affected by VCID-dt72-wk6f-aaam None 35.1.0
2025-02-19T09:01:25.282782+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 35.1.0
2025-02-18T23:47:09.230784+00:00 Debian Importer Affected by VCID-ptm9-5wpw-aaaf None 35.1.0
2024-11-22T06:18:43.980611+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 35.0.0
2024-11-20T04:57:34.813473+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 34.3.2
2024-10-09T05:36:24.613984+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 34.0.2
2024-09-18T16:48:25.709061+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 34.0.1
2024-04-25T10:29:47.651090+00:00 Debian Importer Affected by VCID-mp42-affv-aaad None 34.0.0rc4
2024-04-25T10:29:44.342963+00:00 Debian Importer Affected by VCID-dt72-wk6f-aaam None 34.0.0rc4
2024-04-24T15:45:40.693884+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 34.0.0rc4
2024-04-24T11:50:18.786924+00:00 Debian Importer Affected by VCID-ptm9-5wpw-aaaf None 34.0.0rc4
2024-01-11T12:18:58.003433+00:00 Debian Importer Affected by VCID-mp42-affv-aaad None 34.0.0rc2
2024-01-11T12:18:54.738112+00:00 Debian Importer Affected by VCID-dt72-wk6f-aaam None 34.0.0rc2
2024-01-10T18:06:54.627747+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 34.0.0rc2
2024-01-10T13:38:01.041521+00:00 Debian Importer Affected by VCID-ptm9-5wpw-aaaf None 34.0.0rc2
2024-01-04T22:10:38.205694+00:00 Debian Importer Affected by VCID-mp42-affv-aaad None 34.0.0rc1
2024-01-04T22:10:34.943325+00:00 Debian Importer Affected by VCID-dt72-wk6f-aaam None 34.0.0rc1
2024-01-04T07:39:02.903459+00:00 Debian Importer Affected by VCID-jcnx-yyhm-aaab None 34.0.0rc1
2024-01-04T04:56:51.448764+00:00 Debian Importer Affected by VCID-ptm9-5wpw-aaaf None 34.0.0rc1