CVE-2007-1661

Name of the Vulnerable Software and Affected Versions libpcre3 versions prior to 7.3 libpcrecpp0 versions prior to 7.3 pcre-32bit versions prior to 7.3 pcregrep versions prior to 7.3 libpcre3-dev versions prior to 7.3 pcre-devel versions prior to 7.3 pgrep versions prior to 7.3 pcre versions prior to 7.3

Description The issue is related to multiple vulnerabilities in the PCRE library, which can lead to a disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. The vulnerabilities are caused by the library backtracking too far when matching certain input bytes against some regex patterns in non-UTF-8 mode, allowing context-dependent attackers to obtain sensitive information or cause a denial of service.

Recommendations For libpcre3 versions prior to 7.3, update to version 7.3 or later. For libpcrecpp0 versions prior to 7.3, update to version 7.3 or later. For pcre-32bit versions prior to 7.3, update to version 7.3 or later. For pcregrep versions prior to 7.3, update to version 7.3 or later. For libpcre3-dev versions prior to 7.3, update to version 7.3 or later. For pcre-devel versions prior to 7.3, update to version 7.3 or later. For pgrep versions prior to 7.3, update to version 7.3 or later. For pcre versions prior to 7.3, update to version 7.3 or later.