620660 – (CVE-2017-7186) [TRACKER] pcre: Invalid Unicode property lookup (CVE-2017-7186)

Bug 620660 (CVE-2017-7186) - [TRACKER] pcre: Invalid Unicode property lookup (CVE-2017-7186)

Summary: [TRACKER] pcre: Invalid Unicode property lookup (CVE-2017-7186)

Status:	RESOLVED FIXED

Alias:	CVE-2017-7186

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal trivial
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:	Tracker

Depends on:	614048 614050
Blocks:
	Show dependency tree

Reported:	2017-06-04 00:09 UTC by GLSAMaker/CVETool Bot
Modified:	2017-10-23 01:30 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2017-06-04 00:09:42 UTC

CVE-2017-7186 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-7186):
  libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to
  cause a denial of service (segmentation violation for read access, and
  application crash) by triggering an invalid Unicode property lookup.