CVE-2005-2491 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2005-2491 Interim 1 4 2023-12-09T02:21:34Z current 2021-05-30T12:33:10Z 2023-12-09T02:21:34Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2005-2491 Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BQYYBGU3WDXUGW4TONYZEM4WX7PWRX6Y/#BQYYBGU3WDXUGW4TONYZEM4WX7PWRX6Y E-Mail link for SUSE-SA:2005:048 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YGNWX7FFPGHZOZ3MKK7X7VWUUE26EON2/#YGNWX7FFPGHZOZ3MKK7X7VWUUE26EON2 E-Mail link for SUSE-SA:2005:049 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/SYCF5SGLMEYS464XNB4XWFFNLGTIM6GU/#SYCF5SGLMEYS464XNB4XWFFNLGTIM6GU E-Mail link for SUSE-SA:2005:051 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LES453EF7PHEOBJ62FRKJTXPKXRB2X7I/#LES453EF7PHEOBJ62FRKJTXPKXRB2X7I E-Mail link for SUSE-SA:2005:052 https://www.suse.com/support/security/rating/ SUSE Security Ratings Integer overflow in pcre_compile.c in Perl Compatible Regular Expressions (PCRE) before 6.2, as used in multiple products such as Python, Ethereal, and PHP, allows attackers to execute arbitrary code via quantifier values in regular expressions, which leads to a heap-based buffer overflow. CVE-2005-2491 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P