USN-5627-1

Source
https://ubuntu.com/security/notices/USN-5627-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5627-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-5627-1
Related
Published
2022-09-22T08:11:36.580757Z
Modified
2022-09-22T08:11:36.580757Z
Summary
pcre2 vulnerabilities
Details

It was discovered that PCRE incorrectly handled memory when handling certain regular expressions. An attacker could possibly use this issue to cause applications using PCRE to expose sensitive information.

References

Affected packages

Ubuntu:20.04:LTS / pcre2

Package

Name
pcre2
Purl
pkg:deb/ubuntu/pcre2?arch=src?distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.34-7ubuntu0.1

Affected versions

10.*

10.32-5
10.34-7

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-16-0"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-16-0-dbgsym"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-32-0"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-32-0-dbgsym"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-8-0"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-8-0-dbgsym"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-8-0-udeb"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-dev"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-posix2"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "libpcre2-posix2-dbgsym"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "pcre2-utils"
        },
        {
            "binary_version": "10.34-7ubuntu0.1",
            "binary_name": "pcre2-utils-dbgsym"
        }
    ]
}

Ubuntu:22.04:LTS / pcre2

Package

Name
pcre2
Purl
pkg:deb/ubuntu/pcre2?arch=src?distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
10.39-3ubuntu0.1

Affected versions

10.*

10.37-0ubuntu2
10.39-3
10.39-3build1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-16-0"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-16-0-dbgsym"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-32-0"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-32-0-dbgsym"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-8-0"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-8-0-dbgsym"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-dev"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-posix3"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "libpcre2-posix3-dbgsym"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "pcre2-utils"
        },
        {
            "binary_version": "10.39-3ubuntu0.1",
            "binary_name": "pcre2-utils-dbgsym"
        }
    ]
}