Launchpad.net

CVE 2007-4768

Heap-based buffer overflow in Perl-Compatible Regular Expression (PCRE) library before 7.3 allows context-dependent attackers to execute arbitrary code via a singleton Unicode sequence in a character class in a regex pattern, which is incorrectly optimized.

Related bugs and status

CVE-2007-4768 (Candidate) is related to these bugs:

Bug #160454: [pcre3] several security issues in Perl-Compatible Regular Expression library

		In	Importance	Status
160454	[pcre3] several security issues in Perl-Compatible Regular Expression library	pcre3 (Ubuntu)	Undecided	Fix Released
160454	[pcre3] several security issues in Perl-Compatible Regular Expression library	pcre3 (Ubuntu Dapper)	Medium	Fix Released
160454	[pcre3] several security issues in Perl-Compatible Regular Expression library	pcre3 (Ubuntu Edgy)	Medium	Fix Released
160454	[pcre3] several security issues in Perl-Compatible Regular Expression library	pcre3 (Ubuntu Hardy)	Undecided	Fix Released
160454	[pcre3] several security issues in Perl-Compatible Regular Expression library	pcre3 (Ubuntu Gutsy)	Medium	Fix Released
160454	[pcre3] several security issues in Perl-Compatible Regular Expression library	pcre3 (Ubuntu Feisty)	Medium	Fix Released

Bug #190570: Security update available for Adobe Reader

		In	Importance	Status
190570	Security update available for Adobe Reader	Medibuntu	Medium	Fix Released
190570	Security update available for Adobe Reader	Medibuntu feisty	High	Fix Released
190570	Security update available for Adobe Reader	Medibuntu gutsy	Medium	Fix Released
190570	Security update available for Adobe Reader	Medibuntu hardy	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

DEBIAN: DSA-1399
MLIST: [gtk-devel-list] 20071...
CONFIRM: https://issues.rpath.c...
MANDRIVA: MDKSA-2007:211
BID: 26346
SECUNIA: 27538
SECUNIA: 27543
SECUNIA: 27554
GENTOO: GLSA-200711-30
SECUNIA: 27741
SECUNIA: 27697
CONFIRM: http://docs.info.apple...
CONFIRM: http://www.adobe.com/s...
APPLE: APPLE-SA-2007-12-17
REDHAT: RHSA-2007:1126
CERT: TA07-352A
SECTRACK: 1019116
SECUNIA: 28136
SECUNIA: 28157
SECUNIA: 28161
CERT: TA07-355A
MISC: http://bugs.gentoo.org...
GENTOO: GLSA-200801-02
SECUNIA: 28406
SECUNIA: 28414
GENTOO: GLSA-200801-07
SECUNIA: 28570
GENTOO: GLSA-200801-18
GENTOO: GLSA-200801-19
SECUNIA: 28714
SECUNIA: 28720
SUSE: SUSE-SA:2007:069
SECUNIA: 28213
FEDORA: FEDORA-2008-1842
SECUNIA: 29267
CONFIRM: http://docs.info.apple...
APPLE: APPLE-SA-2008-03-18
SECUNIA: 29420
CONFIRM: http://www.adobe.com/s...
GENTOO: GLSA-200805-11
SECUNIA: 30155
SECUNIA: 30219
SUNALERT: 238305
SECUNIA: 30507
SUNALERT: 239286
SECUNIA: 30840
DEBIAN: DSA-1570
SECUNIA: 30106
VUPEN: ADV-2007-3725
VUPEN: ADV-2007-3790
VUPEN: ADV-2007-4238
VUPEN: ADV-2007-4258
VUPEN: ADV-2008-0924
VUPEN: ADV-2008-1724
VUPEN: ADV-2008-1966
XF: pcre-class-unicode-bo(...
OVAL: oval:org.mitre.oval:de...
UBUNTU: USN-547-1
BUGTRAQ: 20071106 rPSA-2007-023...
BUGTRAQ: 20071112 FLEA-2007-006...