Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2015-2326: SUSE Linux Security Advisory

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

SUSE: CVE-2015-2326: SUSE Linux Security Advisory

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

07/21/2015

Created

07/25/2018

Added

12/18/2015

Modified

02/04/2022

Description

The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)(\1))/".

Solution(s)

suse-upgrade-apache2-mod_php7
suse-upgrade-libmysqlclient-devel
suse-upgrade-libmysqlclient18
suse-upgrade-libmysqlclient18-32bit
suse-upgrade-libmysqlclient_r18
suse-upgrade-libmysqlclient_r18-32bit
suse-upgrade-libmysqld-devel
suse-upgrade-libmysqld18
suse-upgrade-libpcre1
suse-upgrade-libpcre1-32bit
suse-upgrade-libpcre16-0
suse-upgrade-libpcre2-16-0
suse-upgrade-libpcre2-32-0
suse-upgrade-libpcre2-8-0
suse-upgrade-libpcre2-posix2
suse-upgrade-libpcrecpp0
suse-upgrade-libpcrecpp0-32bit
suse-upgrade-libpcreposix0
suse-upgrade-mariadb
suse-upgrade-mariadb-100-errormessages
suse-upgrade-mariadb-client
suse-upgrade-mariadb-errormessages
suse-upgrade-mariadb-tools
suse-upgrade-pcre-devel
suse-upgrade-pcre-tools
suse-upgrade-pcre2-devel
suse-upgrade-php7
suse-upgrade-php7-bcmath
suse-upgrade-php7-bz2
suse-upgrade-php7-calendar
suse-upgrade-php7-ctype
suse-upgrade-php7-curl
suse-upgrade-php7-dba
suse-upgrade-php7-devel
suse-upgrade-php7-dom
suse-upgrade-php7-embed
suse-upgrade-php7-enchant
suse-upgrade-php7-exif
suse-upgrade-php7-fastcgi
suse-upgrade-php7-fileinfo
suse-upgrade-php7-fpm
suse-upgrade-php7-ftp
suse-upgrade-php7-gd
suse-upgrade-php7-gettext
suse-upgrade-php7-gmp
suse-upgrade-php7-iconv
suse-upgrade-php7-imap
suse-upgrade-php7-intl
suse-upgrade-php7-json
suse-upgrade-php7-ldap
suse-upgrade-php7-mbstring
suse-upgrade-php7-mcrypt
suse-upgrade-php7-mysql
suse-upgrade-php7-odbc
suse-upgrade-php7-opcache
suse-upgrade-php7-openssl
suse-upgrade-php7-pcntl
suse-upgrade-php7-pdo
suse-upgrade-php7-pear
suse-upgrade-php7-pear-archive_tar
suse-upgrade-php7-pgsql
suse-upgrade-php7-phar
suse-upgrade-php7-posix
suse-upgrade-php7-pspell
suse-upgrade-php7-readline
suse-upgrade-php7-shmop
suse-upgrade-php7-snmp
suse-upgrade-php7-soap
suse-upgrade-php7-sockets
suse-upgrade-php7-sodium
suse-upgrade-php7-sqlite
suse-upgrade-php7-sysvmsg
suse-upgrade-php7-sysvsem
suse-upgrade-php7-sysvshm
suse-upgrade-php7-tidy
suse-upgrade-php7-tokenizer
suse-upgrade-php7-wddx
suse-upgrade-php7-xmlreader
suse-upgrade-php7-xmlrpc
suse-upgrade-php7-xmlwriter
suse-upgrade-php7-xsl
suse-upgrade-php7-zip
suse-upgrade-php7-zlib
suse-upgrade-php72-devel

References

SUSE-SU-2015:1273-1
CVE-2015-2326
USN-2694-1
USN-2943-1

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2015-2326: SUSE Linux Security Advisory

SUSE: CVE-2015-2326: SUSE Linux Security Advisory

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.