Ubuntu 4.10 / 5.04 : pcre3, apache2 vulnerabilities (USN-173-2)
High Nessus Plugin ID 20581
SynopsisThe remote Ubuntu host is missing one or more security-related patches.
DescriptionUSN-173-1 fixed a buffer overflow vulnerability in the PCRE library.
However, it was determined that this did not suffice to prevent all possible overflows, so another update is necessary.
In addition, it was found that the Ubuntu 4.10 version of Apache 2 contains a static copy of the library code, so this package needs to be updated as well. In Ubuntu 5.04, Apache 2 uses the external library from the libpcre3 package.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected packages.