FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2005-2491

This CVE name corresponds to:

Entered Topic
2005-08-26 pcre -- regular expression buffer overflow

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2005-2491
Phase Assigned(20050808)

Description

Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow.

References

Source Reference
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2005-216.pdf
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2005-223.pdf
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-159.htm
APPLE APPLE-SA-2005-11-29
DEBIAN DSA-800
DEBIAN DSA-817
DEBIAN DSA-819
DEBIAN DSA-821
FEDORA FLSA:168516
GENTOO GLSA-200509-02
GENTOO GLSA-200509-08
GENTOO GLSA-200509-12
GENTOO GLSA-200509-19
HP HPSBUX02074
HP SSRT051251
HP HPSBMA02159
HP SSRT061238
HP HPSBOV02683
HP SSRT090208
REDHAT RHSA-2005:761
REDHAT RHSA-2006:0197
OPENPKG OpenPKG-SA-2005.018
REDHAT RHSA-2005:358
SCO SCOSA-2006.10
SGI 20060401-01-U
SUNALERT 102198
SUSE SUSE-SA:2005:051
SUSE SUSE-SA:2005:048
SUSE SUSE-SA:2005:049
SUSE SUSE-SA:2005:052
TRUSTIX TSLSA-2005-0059
CONFIRM http://www.ethereal.com/appnotes/enpa-sa-00021.html
CONFIRM http://www.php.net/release_4_4_1.php
BID 14620
BID 15647
OVAL oval:org.mitre.oval:def:11516
VUPEN ADV-2005-1511
VUPEN ADV-2005-2659
VUPEN ADV-2006-0789
VUPEN ADV-2006-4320
VUPEN ADV-2006-4502
OVAL oval:org.mitre.oval:def:735
OVAL oval:org.mitre.oval:def:1496
OVAL oval:org.mitre.oval:def:1659
SECTRACK 1014744
SECUNIA 17813
SECUNIA 16502
SECUNIA 16679
SECUNIA 19072
SECUNIA 19193
SECUNIA 17252
SECUNIA 19532
SECUNIA 21522
SECUNIA 22691
SECUNIA 22875
SREASON 604