USN-173-1: PCRE vulnerability

24 August 2005

pcre3 vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 5.04
  • Ubuntu 4.10

Software Description

Details

A buffer overflow has been discovered in the PCRE, a widely used library that provides Perl compatible regular expressions. Specially crafted regular expressions triggered a buffer overflow. On systems that accept arbitrary regular expressions from untrusted users, this could be exploited to execute arbitrary code with the privileges of the application using the library.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 5.04
libpcre3
Ubuntu 4.10
libpcre3

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

References