Solution
Please Install the Updated Packages.
Insight
PCRE is a Perl-compatible regular expression library.
Flaws were discovered in the way PCRE handles certain malformed regular expressions. If an application linked against PCRE, such as Konqueror, parses a malicious regular expression, it may have been possible to run arbitrary code as the user running the application.
(CVE-2006-7225, CVE-2006-7226, CVE-2006-7228, CVE-2006-7230)
Users of PCRE are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.
Red Hat would like to thank Ludwig Nussel for reporting these issues.
Affected
pcre on Red Hat Enterprise Linux (v. 5 server)
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2006-7225, CVE-2006-7226, CVE-2006-7228, CVE-2006-7230 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities