Red Hat Local Security Checks : RedHat Update for pcre RHSA-2015:0330-01

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.871333

Categoría: Red Hat Local Security Checks

Título: RedHat Update for pcre RHSA-2015:0330-01

Resumen: The remote host is missing an update for the 'pcre'; package(s) announced via the referenced advisory.

Descripción: Summary:
The remote host is missing an update for the 'pcre'
package(s) announced via the referenced advisory.

Vulnerability Insight:
PCRE is a Perl-compatible regular expression library.

A flaw was found in the way PCRE handled certain malformed regular
expressions. This issue could cause an application (for example, Konqueror)
linked against PCRE to crash while parsing malicious regular expressions.
(CVE-2014-8964)

This update also adds the following enhancement:

* Support for the little-endian variant of IBM Power Systems has been added
to the pcre packages. (BZ#1123498, BZ#1125642)

All pcre users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue and add this enhancement.

Affected Software/OS:
pcre on Red Hat Enterprise Linux Server (v. 7)

Solution:
Please Install the Updated Packages.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-8964
BugTraq ID: 71206
http://www.securityfocus.com/bid/71206
http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145843.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147474.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147516.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147511.html
https://security.gentoo.org/glsa/201607-02
http://www.mandriva.com/security/advisories?name=MDVSA-2015:002
http://www.mandriva.com/security/advisories?name=MDVSA-2015:137
http://www.openwall.com/lists/oss-security/2014/11/21/6
RedHat Security Advisories: RHSA-2015:0330
http://rhn.redhat.com/errata/RHSA-2015-0330.html
SuSE Security Announcement: openSUSE-SU-2015:0858 (Google Search)
http://lists.opensuse.org/opensuse-updates/2015-05/msg00014.html

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.871333
Categoría:	Red Hat Local Security Checks
Título:	RedHat Update for pcre RHSA-2015:0330-01
Resumen:	The remote host is missing an update for the 'pcre'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'pcre' package(s) announced via the referenced advisory. Vulnerability Insight: PCRE is a Perl-compatible regular expression library. A flaw was found in the way PCRE handled certain malformed regular expressions. This issue could cause an application (for example, Konqueror) linked against PCRE to crash while parsing malicious regular expressions. (CVE-2014-8964) This update also adds the following enhancement: * Support for the little-endian variant of IBM Power Systems has been added to the pcre packages. (BZ#1123498, BZ#1125642) All pcre users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue and add this enhancement. Affected Software/OS: pcre on Red Hat Enterprise Linux Server (v. 7) Solution: Please Install the Updated Packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-8964 BugTraq ID: 71206 http://www.securityfocus.com/bid/71206 http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145843.html http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147474.html http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147516.html http://lists.fedoraproject.org/pipermail/package-announce/2015-January/147511.html https://security.gentoo.org/glsa/201607-02 http://www.mandriva.com/security/advisories?name=MDVSA-2015:002 http://www.mandriva.com/security/advisories?name=MDVSA-2015:137 http://www.openwall.com/lists/oss-security/2014/11/21/6 RedHat Security Advisories: RHSA-2015:0330 http://rhn.redhat.com/errata/RHSA-2015-0330.html SuSE Security Announcement: openSUSE-SU-2015:0858 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-05/msg00014.html
Copyright	Copyright (C) 2015 Greenbone AG