CVE-2015-2325 (retired)

Priority
Description
heap buffer overflow in compile_branch()
Assigned-to
mdeslaur
Notes
tyhicksUnable to trigger the overflow in Vivid, Utopic, or Trusty.
sarnoldseyeongkim reports that he was able to reproduce the issue
on vivid and wily
mdeslaurvalgrind does show an invalid read, even if it doesn't end in
a crash
can't reproduce on precise

was supposed to be fixed in wily (2:8.35-7ubuntu2) but got
reverted in (2:8.35-7ubuntu5) by mistake

CVE-2015-2325_CVE-2015-2326_CVE-2015-3210_CVE-2015-5073.patch
in jessie
Package
Source: pcre3 (LP Ubuntu Debian)
Upstream:needed
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (2:8.38-3)
Patches:
Upstream:http://vcs.pcre.org/pcre?view=revision&revision=1528
More Information

Updated: 2019-10-09 07:52:31 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)