[Bug 2045489] Re: CVE-2022-41409: Integer overflow vulnerability in pcre2test before 10.41 allows attackers to cause a denial of service or other unspecified impacts via negative input.
Eduardo Barretto
2045489 at bugs.launchpad.net
Fri Oct 18 11:56:59 UTC 2024
** Changed in: pcre2 (Ubuntu)
Importance: Undecided => Low
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to pcre2 in Ubuntu.
https://bugs.launchpad.net/bugs/2045489
Title:
CVE-2022-41409: Integer overflow vulnerability in pcre2test before
10.41 allows attackers to cause a denial of service or other
unspecified impacts via negative input.
Status in pcre2 package in Ubuntu:
Confirmed
Bug description:
CVE-2022-41409
Integer overflow vulnerability in pcre2test before 10.41 allows
attackers to cause a denial of service or other unspecified impacts
via negative input.
https://nvd.nist.gov/vuln/detail/CVE-2022-41409
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41409
https://security-tracker.debian.org/tracker/CVE-2022-41409
https://ubuntu.com/security/
https://ubuntu.com/security/CVE-2022-41409
Potential fix at
https://github.com/PCRE2Project/pcre2/commit/94e1c001761373b7d9450768aa15d04c25547a35
https://github.com/PCRE2Project/pcre2/issues/141
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/pcre2/+bug/2045489/+subscriptions
More information about the foundations-bugs
mailing list