Vulnerabilities > Pcre > Pcre > 8.40
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-06-15 | CVE-2020-14155 | Integer Overflow or Wraparound vulnerability in multiple products libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring. | 5.3 |
2020-06-15 | CVE-2019-20838 | Out-of-bounds Read vulnerability in multiple products libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454. | 7.5 |
2017-03-23 | CVE-2017-7246 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Pcre 8.40 Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file. | 6.8 |
2017-03-23 | CVE-2017-7245 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Pcre 8.40 Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file. | 6.8 |
2017-03-23 | CVE-2017-7244 | Out-of-bounds Read vulnerability in Pcre 8.40 The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file. | 4.3 |
2017-03-20 | CVE-2017-7186 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Pcre and Pcre2 libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode property lookup. | 5.0 |