CVE-2015-8388
pcre: buffer overflow for forward reference within backward assertion with excess closing parenthesis (8.38/18)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
PCRE before 8.38 mishandles the /(?=di(?<=(?1))|(?=(.))))/ pattern and related patterns with an unmatched closing parenthesis, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror.
PCRE en versiones anteriores a 8.38 no maneja correctamente el patrón /(?=di(?<=(?1))|(?=(.))))/ y patrones relacionados con un paréntesis de cierre no emparejado, lo que permite a atacantes remotos causar una denegación de servicio (desbordamiento de buffer) o posiblemente tener otro impacto no especificado a través de una expresión regular manipulada, según lo demostrado por un objeto JavaScript RegExp encontrado por Konqueror.
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The rh-php56 packages provide a recent stable release of PHP with PEAR 1.9.5 and enhanced language features including constant expressions, variadic functions, arguments unpacking, and the interactive debuger. The memcache, mongo, and XDebug extensions are also included. The rh-php56 Software Collection has been upgraded to version 5.6.25, which provides a number of bug fixes and enhancements over the previous version. Security Fixes in the rh-php56-php component have been added.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2015-12-01 CVE Reserved
- 2015-12-02 CVE Published
- 2024-08-06 CVE Updated
- 2025-04-08 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-122: Heap-based Buffer Overflow
- CWE-185: Incorrect Regular Expression
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://www-01.ibm.com/support/docview.wss?uid=isg3T1023886 | Third Party Advisory | |
| http://www.openwall.com/lists/oss-security/2015/11/29/1 | Mailing List |
|
| http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html | Third Party Advisory |
|
| http://www.securityfocus.com/bid/85576 | Third Party Advisory | |
| https://bto.bluecoat.com/security-advisory/sa128 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2016-1025.html | 2019-12-27 | |
| http://rhn.redhat.com/errata/RHSA-2016-2750.html | 2019-12-27 | |
| http://vcs.pcre.org/pcre/code/trunk/ChangeLog?view=markup | 2019-12-27 | |
| https://access.redhat.com/errata/RHSA-2016:1132 | 2019-12-27 | |
| https://security.gentoo.org/glsa/201607-02 | 2019-12-27 | |
| https://access.redhat.com/security/cve/CVE-2015-8388 | 2016-11-15 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1237223 | 2016-11-15 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Linux Search vendor "Oracle" for product "Linux" | 7 Search vendor "Oracle" for product "Linux" and version "7" | - |
Affected
| ||||||
| Pcre Search vendor "Pcre" | Perl Compatible Regular Expression Library Search vendor "Pcre" for product "Perl Compatible Regular Expression Library" | <= 8.37 Search vendor "Pcre" for product "Perl Compatible Regular Expression Library" and version " <= 8.37" | - |
Affected
| ||||||