Accepting request 416446 from home:AndreasStieger:branches:Base:System

record minor vulnerabilities fixed in 8.39: CVE-2016-3191 boo#971741 CVE-2016-1283 boo#960837 OBS-URL: https://build.opensuse.org/request/show/416446 OBS-URL: https://build.opensuse.org/package/show/Base:System/pcre?expand=0&rev=72
2016-08-04 11:57:06 +00:00 · 2016-08-04 11:57:06 +00:00 · a3b34a88fb
commit a3b34a88fb
parent 5fe20a5d1d
1 changed files with 8 additions and 0 deletions
--- a/pcre.changes
+++ b/pcre.changes
@ -1,9 +1,17 @@
+-------------------------------------------------------------------
+Mon Aug  1 15:22:09 UTC 2016 - astieger@suse.com
+
+- record minor vulnerabilities fixed in 8.39
+
 -------------------------------------------------------------------
 Wed Jun 15 07:44:27 UTC 2016 - mpluskal@suse.com

 - Update to version 8.39:
  * Some appropriate PCRE2 JIT improvements have been retro-fitted 
    to PCRE1.
+  * CVE-2016-3191: workspace overflow for (*ACCEPT) with deeply
+                   nested parentheses (boo#971741)
+  * CVE-2016-1283: Heap buffer overflow DoS (boo#960837)
  * Apart from that, this is another bug-fix release.

 -------------------------------------------------------------------