libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode property lookup.
{ "binaries": [ { "binary_name": "libpcre16-3", "binary_version": "2:8.38-3.1ubuntu0.1~esm2" }, { "binary_name": "libpcre3", "binary_version": "2:8.38-3.1ubuntu0.1~esm2" }, { "binary_name": "libpcre3-dev", "binary_version": "2:8.38-3.1ubuntu0.1~esm2" }, { "binary_name": "libpcre32-3", "binary_version": "2:8.38-3.1ubuntu0.1~esm2" }, { "binary_name": "libpcrecpp0v5", "binary_version": "2:8.38-3.1ubuntu0.1~esm2" }, { "binary_name": "pcregrep", "binary_version": "2:8.38-3.1ubuntu0.1~esm2" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "libpcre2-16-0", "binary_version": "10.21-1" }, { "binary_name": "libpcre2-32-0", "binary_version": "10.21-1" }, { "binary_name": "libpcre2-8-0", "binary_version": "10.21-1" }, { "binary_name": "libpcre2-dev", "binary_version": "10.21-1" }, { "binary_name": "libpcre2-posix0", "binary_version": "10.21-1" }, { "binary_name": "pcre2-utils", "binary_version": "10.21-1" } ] }