Skip to content. | Skip to navigation

Sections
Personal tools
You are here: Home News Pcre security upgrade
 

Pcre security upgrade

— filed under:

A new pcre package is available for VL 5.9 to fix a security issue. More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:

Quote from: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.410484

Tavis Ormandy of the Google Security Team found a buffer overflow triggered when handling certain regular expressions. This could lead to a crash or possible execution of code as the user of the PCRE-linked application. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2371
pcre (Perl-compatible regular expression library) The PCRE library is a set of functions that implement regular expression pattern matching using the same syntax and semantics as Perl 5, with just a few differences (documented in the man page). The PCRE library is used by KDE's Konqueror browser.
Document Actions