CVE-2006-7225

Impact:
Important
Public Date:
2007-11-13
Bugzilla:
384761: CVE-2006-7225 pcre miscalculation of memory requirements for malformed Posix character class

The MITRE CVE dictionary describes this issue as:

Perl-Compatible Regular Expression (PCRE) library before 6.7 allows context-dependent attackers to cause a denial of service (error or crash) via a regular expression that involves a "malformed POSIX character class", as demonstrated via an invalid character after a [[ sequence.

Find out more about CVE-2006-7225 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (pcre) RHSA-2007:1059 2007-11-29
Red Hat Enterprise Linux 4 (pcre) RHSA-2007:1068 2007-11-29

Acknowledgements

Red Hat would like to thank Ludwig Nussel for reporting this issue.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.