CentOS Update For Pcre CESA-2007:1065-01 Centos2 I386 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

PCRE is a Perl-compatible regular expression library. Flaws were discovered in the way PCRE handles certain malformed regular expressions. If an application linked against PCRE parses a malicious regular expression, it may have been possible to run arbitrary code as the user running the application. (CVE-2006-7228, CVE-2007-1660) Users of PCRE are advised to upgrade to these updated packages, which contain backported patches to resolve these issues. Red Hat would like to thank Ludwig Nussel for reporting these issues.

Affected

pcre on CentOS 2

References

http://lists.centos.org/pipermail/centos-announce/2007-November/014471.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2006-7228, CVE-2007-1660
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

CentOS Update for apr CESA-2011:0844 centos4 i386
CentOS Security Advisory CESA-2009:1490 (squirrelmail)
CentOS Update for acpid CESA-2009:0474 centos4 i386
CentOS Update for 389-ds-base CESA-2014:1031 centos7
CentOS Security Advisory CESA-2009:1138 (openswan)

CentOS Update for pcre CESA-2007:1065-01 centos2 i386

Take action and discover your vulnerabilities