TEMP-0827564-93E4E3

NameTEMP-0827564-93E4E3
DescriptionStack corruption from crafted pattern
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs827564

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
pcre2 (PTS)stretch (lts), stretch10.22-3+deb9u1fixed
buster (security), buster, buster (lts)10.32-5+deb10u1fixed
bullseye10.36-2+deb11u1fixed
bookworm10.42-1fixed
sid, trixie10.44-5fixed
pcre3 (PTS)jessie2:8.35-3.3+deb8u4vulnerable
stretch2:8.39-3fixed
buster2:8.39-12fixed
bullseye2:8.39-13fixed
bookworm2:8.39-15fixed
sid2:8.39-15.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
pcre2source(unstable)(not affected)
pcre3sourcesqueeze(not affected)
pcre3sourcewheezy(not affected)
pcre3source(unstable)2:8.39-1827564

Notes

[jessie] - pcre3 <no-dsa> (Minor issue)
[wheezy] - pcre3 <not-affected> (Vulnerable code not present)
[squeeze] - pcre3 <not-affected> (Vulnerable code not present)
- pcre2 <not-affected> (Vulnerable code not present)
https://bugs.exim.org/show_bug.cgi?id=1780
Possibly introduced after http://vcs.pcre.org/pcre?view=revision&revision=1266
Fixed by: http://vcs.pcre.org/pcre?view=revision&revision=1638 (8.39)

Search for package or bug name: Reporting problems