Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 53 results


CVE-2020-14155

Negligible priority

Some fixes available 4 of 5

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Not affected Fixed Fixed Fixed
Show less packages

CVE-2019-20838

Low priority

Some fixes available 4 of 12

libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454.

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Vulnerable Fixed Fixed Fixed Not affected
Show less packages

CVE-2017-16231

Negligible priority
Ignored

** DISPUTED ** In PCRE 8.41, after compiling, a pcretest load test PoC produces a crash overflow in the function match() in pcre_exec.c because of a self-recursive call. NOTE: third parties dispute the relevance of this report,...

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Not affected Not affected Not affected
Show less packages

CVE-2017-13846

Medium priority
Ignored

An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the third-party "PCRE" product. Versions before 8.40 allow remote attackers to cause a denial of service (application crash)...

2 affected packages

pcre2, pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre2 Not affected
pcre3 Not affected
Show less packages

CVE-2017-11164

Negligible priority
Vulnerable

In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exec.c allows stack exhaustion (uncontrolled recursion) when processing a crafted regular expression.

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Vulnerable Vulnerable Vulnerable Vulnerable Ignored
Show less packages

CVE-2017-7246

Negligible priority
Ignored

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Not affected Not affected Not affected
Show less packages

CVE-2017-7245

Negligible priority
Ignored

Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file.

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Not affected Not affected Not affected
Show less packages

CVE-2017-7244

Low priority

Some fixes available 1 of 2

The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file.

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Not affected Not affected Not affected Fixed
Show less packages

CVE-2017-7186

Low priority

Some fixes available 1 of 6

libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode property lookup.

2 affected packages

pcre2, pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre2 Not affected Not affected Not affected Not affected Vulnerable
pcre3 Not affected Not affected Not affected Not affected Fixed
Show less packages

CVE-2017-6004

Low priority

Some fixes available 1 of 2

The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680 (e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (out-of-bounds read and...

1 affected packages

pcre3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
pcre3 Not affected Not affected Not affected Fixed
Show less packages