Search for packages
| purl | pkg:deb/debian/pcre2@2.08-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-dt72-wk6f-aaam
Aliases: CVE-2022-1586 |
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully read in case-less matching within JIT. |
Affected by 1 other vulnerability. |
|
VCID-hyp6-74p8-aaap
Aliases: CVE-2017-7186 |
libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode property lookup. |
Affected by 4 other vulnerabilities. |
|
VCID-jcnx-yyhm-aaab
Aliases: CVE-2019-20454 |
Out-of-bounds Read An out-of-bounds read was discovered in PCRE when the pattern \X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an attacker to crash the application. The flaw occurs in do_extuni_no_utf in pcre2_jit_compile.c. |
Affected by 1 other vulnerability. |
|
VCID-mp42-affv-aaad
Aliases: CVE-2022-1587 |
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers. |
Affected by 1 other vulnerability. |
|
VCID-ptm9-5wpw-aaaf
Aliases: CVE-2017-8786 |
Improper Restriction of Operations within the Bounds of a Memory Buffer pcre2test.c in PCRE2 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression. |
Affected by 4 other vulnerabilities. |
|
VCID-zghf-77cd-aaaj
Aliases: CVE-2016-3191 |
The compile_branch function in pcre_compile.c in PCRE 8.x before 8.39 and pcre2_compile.c in PCRE2 before 10.22 mishandles patterns containing an (*ACCEPT) substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, aka ZDI-CAN-3542. |
Affected by 4 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-06-21T19:16:52.028826+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.3 |
| 2025-06-21T17:46:33.613668+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:21:05.271250+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T15:20:34.664690+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T13:49:51.399106+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:59:18.270795+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T12:02:47.329536+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.3 |
| 2025-06-21T05:00:03.735953+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | None | 36.1.3 |
| 2025-06-21T03:07:04.875074+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | None | 36.1.3 |
| 2025-06-21T02:23:31.678239+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | None | 36.1.3 |
| 2025-06-21T01:18:13.660826+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | None | 36.1.3 |
| 2025-06-20T23:31:46.855569+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | None | 36.1.3 |
| 2025-06-20T20:36:28.334333+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | None | 36.1.3 |
| 2025-06-08T13:15:11.794668+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T13:10:03.280363+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T11:45:38.423075+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.1.0 |
| 2025-06-08T10:19:36.504346+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:15:15.638254+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T08:14:42.537514+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T06:44:01.590647+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:54:15.316517+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-08T05:11:29.390196+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.1.0 |
| 2025-06-07T22:37:29.129132+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | None | 36.1.0 |
| 2025-06-07T20:39:51.054544+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | None | 36.1.0 |
| 2025-06-07T19:47:23.939242+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | None | 36.1.0 |
| 2025-06-07T18:40:57.414306+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | None | 36.1.0 |
| 2025-06-07T16:54:42.327206+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | None | 36.1.0 |
| 2025-06-07T14:09:03.096270+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | None | 36.1.0 |
| 2025-04-12T21:35:07.452146+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T21:21:44.161263+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:52:19.192751+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T19:03:06.895622+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T18:57:45.012595+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T17:30:31.877180+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 | 36.0.0 |
| 2025-04-12T16:00:33.116619+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:46:55.548711+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T06:46:24.583423+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T05:16:31.095073+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T04:26:07.183895+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-08T03:42:26.663889+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 | 36.0.0 |
| 2025-04-07T21:09:09.144515+00:00 | Debian Oval Importer | Affected by | VCID-mp42-affv-aaad | None | 36.0.0 |
| 2025-04-07T19:10:19.180795+00:00 | Debian Oval Importer | Affected by | VCID-dt72-wk6f-aaam | None | 36.0.0 |
| 2025-04-07T18:25:12.664794+00:00 | Debian Oval Importer | Affected by | VCID-jcnx-yyhm-aaab | None | 36.0.0 |
| 2025-04-07T17:18:46.336985+00:00 | Debian Oval Importer | Affected by | VCID-zghf-77cd-aaaj | None | 36.0.0 |
| 2025-04-07T15:27:41.345958+00:00 | Debian Oval Importer | Affected by | VCID-ptm9-5wpw-aaaf | None | 36.0.0 |
| 2025-04-07T12:42:30.404670+00:00 | Debian Oval Importer | Affected by | VCID-hyp6-74p8-aaap | None | 36.0.0 |