Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Sign up!
EnGarde Community
What is the most important Linux security technology?
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Latest Newsletters
Linux Advisory Watch: March 27th, 2015
Linux Security Week: March 23rd, 2015
LinuxSecurity Newsletters
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

Ubuntu: PCRE vulnerability Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Ubuntu Tavis Ormandy discovered that the PCRE library did not correctly handle certain in-pattern options. An attacker could cause applications linked against pcre3 to crash, leading to a denial of service.
Ubuntu Security Notice USN-624-1              July 15, 2008
pcre3 vulnerability

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 7.04
Ubuntu 7.10
Ubuntu 8.04 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  libpcre3                        7.4-0ubuntu0.6.06.3

Ubuntu 7.04:
  libpcre3                        7.4-0ubuntu0.7.04.3

Ubuntu 7.10:
  libpcre3                        7.4-0ubuntu0.7.10.3

Ubuntu 8.04 LTS:
  libpcre3                        7.4-1ubuntu2.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

Tavis Ormandy discovered that the PCRE library did not correctly handle
certain in-pattern options.  An attacker could cause applications linked
against pcre3 to crash, leading to a denial of service.

Updated packages for Ubuntu 6.06 LTS:

  Source archives:
      Size/MD5:    85631 6bcacd2296461d74fd9e661d9fcb2922
      Size/MD5:      657 e56861ae51122d44305ecc6ea959db29
      Size/MD5:  1106897 de886b22cddc8eaf620a421d3041ee0b

  Architecture independent packages:
      Size/MD5:      772 af2474a8f5e8c2dc1a6bb7b820537720

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   254948 788c8a86453466bfeac3bab4ae934bd1
      Size/MD5:   198730 ea815bf19bb9888cac145516bb4f8059
      Size/MD5:    90324 7c9578adad9e1b2cd22b96b287fdb2e7
      Size/MD5:    20358 d2b2599e71665d8088c2b37bac829bcd

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   246562 441516d6a63e05ac6ff2b68f039a66f8
      Size/MD5:   194202 a8173b6bb5c356167e1e6d292bc28133
      Size/MD5:    88654 9b4a4af5c73fa1a046fec76d8de1e5d4
      Size/MD5:    18962 186f0bc810462dc2cea6d9c85ecca01c

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   258744 07f82099de2e8a7882a4632221834c1b
      Size/MD5:   199912 9a15af619abd26cae9aae1e50c254ebc
      Size/MD5:    91414 dedcd449686b4c5a5f10f8ffc6f3a57a
      Size/MD5:    21368 105edcb4a85e366cabb405d7454748bf

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   250224 9e750f32976a7c7ee5e8a38173019d99
      Size/MD5:   196638 8233e339d6d2ecedbf0d5e91ecfb5857
      Size/MD5:    88096 18c453d1a07da4a594d9b7b1afc53ae7
      Size/MD5:    19584 d3b68c5c809c8c9880b4ba369dc29d05

Updated packages for Ubuntu 7.04:

  Source archives:
      Size/MD5:    85863 e021d65323dfdd5f9152f1adab8ef35b
      Size/MD5:      734 530fd8a9be4a12d42ec6ccbd308d2664
      Size/MD5:  1106897 de886b22cddc8eaf620a421d3041ee0b

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   255290 aabfa0188644252c0a3920c5518b94dd
      Size/MD5:   199016 259f7869305c8a5046c8a1ac707de287
      Size/MD5:    91624 9ce46f293c9f9f05cbc38ad9d70be993
      Size/MD5:    20470 1e41b6410f2f87f635499dbb97203c13

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   251016 5b4756ca47678b63e76e32c01ab56943
      Size/MD5:   198084 af2acf872b82403daac13a67bfca0248
      Size/MD5:    91280 8355dc6f2ea3e91bd669afb92dfd0551
      Size/MD5:    19524 94159666ef8fa0a9be4744d8d1be66f9

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   257716 7ee895147086160c358c4d8ec63b2a3c
      Size/MD5:   201920 6478d1ef4120d40d3266c36cbe78e052
      Size/MD5:    94486 5846a7c667910d3aacf1d7b654d23c93
      Size/MD5:    22692 e9f57c053e847728dcfa8958f4f3c6f4

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   252324 58e066c59fe05eda544681edd5e25adb
      Size/MD5:   199572 60df0418dc40d844992631fdcb2742fe
      Size/MD5:    90136 a115cd726194eaa2279f8e552b1b65da
      Size/MD5:    20404 06f2bfc9542d06d17893613a51d16e41

Updated packages for Ubuntu 7.10:

  Source archives:
      Size/MD5:    15106 03469183b160f6cedf254cda89b58e8b
      Size/MD5:      734 e5349e7d076b1f012418e9fe6e37c7ed
      Size/MD5:  1106897 de886b22cddc8eaf620a421d3041ee0b

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   255724 8eac40835ba83154bb7766637fa55544
      Size/MD5:   205652 48c7afec015d5e7602ed9e0de1f1e303
      Size/MD5:    91454 bc14540316d82cf9121084241e2da710
      Size/MD5:    20466 4560795e64d41315615db50632811995

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   251242 e5aadd8a9f4773afefbd8db00935f19b
      Size/MD5:   204530 94d30a647325d9391abd43760d4cdb51
      Size/MD5:    91150 ccb87ae1e3f5c665526ed9224d21dd49
      Size/MD5:    19526 de8d449e6e968e7ebd99b1a13ac1a96f

  lpia architecture (Low Power Intel Architecture):
      Size/MD5:   252094 d2e0fad28af36746aa97b45f5fb26ed7
      Size/MD5:   206198 e43e0569fa546d53e6b57d01772b44b1
      Size/MD5:    90648 41dad33c9885d61197ff767cc276da6a
      Size/MD5:    19494 f19cc9f205f6fca83e4e4773211b4dd7

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   257776 c3d61408fb1e635ecfd192647800512b
      Size/MD5:   208304 97c7b96cd468d7b7c87f52e92af2c0c8
      Size/MD5:    94430 e99d1887393b006084f6acd8ef6d07de
      Size/MD5:    22690 d788fe4e595af3ada595c05156deeb97

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   252492 72138a6ab427f3577b96fca05b50b7d7
      Size/MD5:   205984 774bd853192a636a0d2c2dae978ef3f4
      Size/MD5:    90036 dcd26900b8d5ee790ae80ea5c5fe4711
      Size/MD5:    20404 8e3ac55a926ceaba2a4aa6d238df66f8

Updated packages for Ubuntu 8.04 LTS:

  Source archives:
      Size/MD5:    28470 7b4185e229a25a167d0623563f55ee3c
      Size/MD5:      754 9513a7249290ebef7f0b29d973c6fb7b
      Size/MD5:  1106897 de886b22cddc8eaf620a421d3041ee0b

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   264496 f530971c2808b0a2fed1a8f3cdd3c9f6
      Size/MD5:   254796 e0da3551ff4b490dd0fb92cade5b3666
      Size/MD5:   205592 5a2219b17fd80877272904a79fadc580
      Size/MD5:    91230 061d3693e966e6f1779b0c64e7c2f4fe
      Size/MD5:    70966 a862563a1d8b0a9f5368d019f03e6b4f
      Size/MD5:    20434 1c7b00f8a238bd9c0cd4f7ec692d059d

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   243506 f0f989aec1a82d1bf0261f7f4b34a60a
      Size/MD5:   251576 d83ce6c8854d3a1167340bd08180b7ce
      Size/MD5:   205802 5556706d347c25bc418f82d5175dc106
      Size/MD5:    91174 b6178ac07f1907e0968c4cd909fa6aa7
      Size/MD5:    72166 c461c3381f3c574185c921be9c39780d
      Size/MD5:    19526 93700c88576af62d943d9fc027a3df68

  lpia architecture (Low Power Intel Architecture):
      Size/MD5:   244482 3ad664f23af3e5ef174933958241900d
      Size/MD5:   252212 2e63fffc5a0491d90eec5f7e16edd485
      Size/MD5:   206530 edee75400a2586765fd8f4338a92ad53
      Size/MD5:    90760 371d5e56822ab90d5a5d9dada21d494b
      Size/MD5:    72762 722e259ce4855436ea4495658ba9377e
      Size/MD5:    19546 181ab09b249e0d304e549bcc41a74e88

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   261410 f31b196b659566cb5cb881dc7f90f451
      Size/MD5:   259794 cd18085f270a0c0cffac4353de756e1a
      Size/MD5:   210952 dce18d87801b8821f87e3a6e443d58ce
      Size/MD5:    94360 b019cdfd389e0d888b53fa825a0ed48b
      Size/MD5:    73124 dfd25f42ce8a11feaa36917bf5ccc4aa
      Size/MD5:    22746 31de7acefbc07e09a2dc81f629097c9e

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   251756 01c99f90917ffa3decd84b7074fd87bd
      Size/MD5:   252004 8359a7b8aecacd672d115df4f7a84264
      Size/MD5:   205372 b704cc10dc4adcb45ad0c8ef1f4e68c3
      Size/MD5:    90340 ca0a66c1db4d1e5bf43954083fcc99e5
      Size/MD5:    69450 2d2abc6b697adeb7bf1cbacbb953153a
      Size/MD5:    20878 ae427cb895a1da464c76d01987d01cba

< Prev   Next >


Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Weekend Edition
FBI Quietly Removes Recommendation To Encrypt Your Phone
And the prize for LEAST SECURE BROWSER goes to ... Chrome!
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2015 Guardian Digital, Inc. All rights reserved.