Detections
Analytics

FreeBSD : pcre -- heap overflow vulnerability (6900e6f1-4a79-11e5-9ad8-14dae9d210b8)

high Nessus Plugin ID 85608

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

Guanxing Wen reports :

PCRE library is prone to a vulnerability which leads to Heap Overflow.
During the compilation of a malformed regular expression, more data is written on the malloced block than the expected size output by compile_regex(). The Heap Overflow vulnerability is caused by the following regular expression.

/(?J:(?|(:(?|(?'R')(\z(?|(?'R')(\k'R')|((?'R')))k'R')|((?'R')))H'Ak'Rf )|s(?'R')))/

A dry run of this particular regular expression with pcretest will reports 'double free or corruption (!prev)'. But it is actually a heap overflow problem. The overflow only affects pcre 8.x branch, pcre2 branch is not affected.

Solution

Update the affected package.

See Also

http://seclists.org/oss-sec/2015/q3/295

https://bugs.exim.org/show_bug.cgi?id=1672

http://www.nessus.org/u?789978a0

Plugin Details

Severity: High

ID: 85608

File Name: freebsd_pkg_6900e6f14a7911e59ad814dae9d210b8.nasl

Version: 2.4

Type: local

Published: 8/25/2015

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:pcre, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 8/24/2015

Vulnerability Publication Date: 8/21/2015