CVE-2008-0674

Buffer overflow in PCRE before 7.6 allows remote attackers to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
pcrepcre
𝑥
≤ 7.5
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
pcre3
bullseye
2:8.39-13
fixed
bookworm
2:8.39-15
fixed
sid
2:8.39-15.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
pcre3
gutsy
Fixed 7.4-0ubuntu0.7.10.2
released
feisty
Fixed 7.4-0ubuntu0.7.04.2
released
edgy
Fixed 7.4-0ubuntu0.6.10.2
released
dapper
Fixed 7.4-0ubuntu0.6.06.2
released
References