Summary: | <dev-libs/libpcre2-10.30: pcre2test.c heap-based buffer overflow | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | gentoo-bugs, polynomial-c |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B2 [glsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 617944 | ||
Bug Blocks: |
Description
GLSAMaker/CVETool Bot
2017-05-09 07:46:36 UTC
documented at https://blogs.gentoo.org/ago/2017/04/29/libpcre-heap-based-buffer-overflow-write-in-pcre2test-c/ I guess it is A2 instead of C3 Fixed in >=dev-libs/libpcre2-10.30, stabilization will happen in bug 617944. This issue was resolved and addressed in GLSA 201710-09 at https://security.gentoo.org/glsa/201710-09 by GLSA coordinator Aaron Bauman (b-man). |