Security update for pcre SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2016:2971-1 Final 1 1 2016-12-02T10:43:31Z current 2016-12-02T10:43:31Z 2016-12-02T10:43:31Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for pcre This update for pcre to version 8.39 (bsc#972127) fixes several issues. If you use pcre extensively please be aware that this is an update to a new version. Please make sure that your software works with the updated version. This version fixes a number of vulnerabilities that affect pcre and applications using the libary when accepting untrusted input as regular expressions or as part thereof. Remote attackers could have caused the application to crash, disclose information or potentially execute arbitrary code. These security issues were fixed: - CVE-2014-8964: Heap-based buffer overflow in PCRE allowed remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats (bsc#906574). - CVE-2015-2325: Heap buffer overflow in compile_branch() (bsc#924960). - CVE-2015-3210: Heap buffer overflow in pcre_compile2() / compile_regex() (bsc#933288) - CVE-2015-3217: PCRE Library Call Stack Overflow Vulnerability in match() (bsc#933878). - CVE-2015-5073: Library Heap Overflow Vulnerability in find_fixedlength() (bsc#936227). - bsc#942865: heap overflow in compile_regex() - CVE-2015-8380: The pcre_exec function in pcre_exec.c mishandled a // pattern with a \01 string, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror (bsc#957566). - CVE-2015-2327: PCRE mishandled certain patterns with internal recursive back references, which allowed remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror (bsc#957567). - bsc#957598: Various security issues - CVE-2015-8381: Heap Overflow in compile_regex() (bsc#957598). - CVE-2015-8382: Regular Expression Uninitialized Pointer Information Disclosure Vulnerability (ZDI-CAN-2547)(bsc#957598). - CVE-2015-8383: Buffer overflow caused by repeated conditional group(bsc#957598). - CVE-2015-8384: Buffer overflow caused by recursive back reference by name within certain group(bsc#957598). - CVE-2015-8385: Buffer overflow caused by forward reference by name to certain group(bsc#957598). - CVE-2015-8386: Buffer overflow caused by lookbehind assertion(bsc#957598). - CVE-2015-8387: Integer overflow in subroutine calls(bsc#957598). - CVE-2015-8388: Buffer overflow caused by certain patterns with an unmatched closing parenthesis(bsc#957598). - CVE-2015-8389: Infinite recursion in JIT compiler when processing certain patterns(bsc#957598). - CVE-2015-8390: Reading from uninitialized memory when processing certain patterns(bsc#957598). - CVE-2015-8391: Some pathological patterns causes pcre_compile() to run for a very long time(bsc#957598). - CVE-2015-8392: Buffer overflow caused by certain patterns with duplicated named groups(bsc#957598). - CVE-2015-8393: Information leak when running pcgrep -q on crafted binary(bsc#957598). - CVE-2015-8394: Integer overflow caused by missing check for certain conditions(bsc#957598). - CVE-2015-8395: Buffer overflow caused by certain references(bsc#957598). - CVE-2015-2328: PCRE mishandled the /((?(R)a|(?1)))+/ pattern and related patterns with certain recursion, which allowed remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression (bsc#957600). - CVE-2016-1283: The pcre_compile2 function in pcre_compile.c in PCRE mishandled certain patterns with named subgroups, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression (bsc#960837). - CVE-2016-3191: The compile_branch function in pcre_compile.c in pcre2_compile.c mishandled patterns containing an (*ACCEPT) substring in conjunction with nested parentheses, which allowed remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted regular expression (bsc#971741). These non-security issues were fixed: - JIT compiler improvements - performance improvements - The Unicode data tables have been updated to Unicode 7.0.0. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP1-2016-1744,SUSE-SLE-DESKTOP-12-SP2-2016-1744,SUSE-SLE-HA-12-SP1-2016-1744,SUSE-SLE-HA-12-SP2-2016-1744,SUSE-SLE-RPI-12-SP2-2016-1744,SUSE-SLE-SDK-12-SP1-2016-1744,SUSE-SLE-SDK-12-SP2-2016-1744,SUSE-SLE-SERVER-12-SP1-2016-1744,SUSE-SLE-SERVER-12-SP2-2016-1744,SUSE-SLE-WE-12-SP1-2016-1744,SUSE-SLE-WE-12-SP2-2016-1744 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ Link for SUSE-SU-2016:2971-1 https://lists.suse.com/pipermail/sle-security-updates/2016-December/002436.html E-Mail link for SUSE-SU-2016:2971-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/924960 SUSE Bug 924960 https://bugzilla.suse.com/933288 SUSE Bug 933288 https://bugzilla.suse.com/933878 SUSE Bug 933878 https://bugzilla.suse.com/936227 SUSE Bug 936227 https://bugzilla.suse.com/942865 SUSE Bug 942865 https://bugzilla.suse.com/957566 SUSE Bug 957566 https://bugzilla.suse.com/957567 SUSE Bug 957567 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/957600 SUSE Bug 957600 https://bugzilla.suse.com/960837 SUSE Bug 960837 https://bugzilla.suse.com/971741 SUSE Bug 971741 https://bugzilla.suse.com/972127 SUSE Bug 972127 https://www.suse.com/security/cve/CVE-2014-8964/ SUSE CVE CVE-2014-8964 page https://www.suse.com/security/cve/CVE-2015-2325/ SUSE CVE CVE-2015-2325 page https://www.suse.com/security/cve/CVE-2015-2327/ SUSE CVE CVE-2015-2327 page https://www.suse.com/security/cve/CVE-2015-2328/ SUSE CVE CVE-2015-2328 page https://www.suse.com/security/cve/CVE-2015-3210/ SUSE CVE CVE-2015-3210 page https://www.suse.com/security/cve/CVE-2015-3217/ SUSE CVE CVE-2015-3217 page https://www.suse.com/security/cve/CVE-2015-5073/ SUSE CVE CVE-2015-5073 page https://www.suse.com/security/cve/CVE-2015-8380/ SUSE CVE CVE-2015-8380 page https://www.suse.com/security/cve/CVE-2015-8381/ SUSE CVE CVE-2015-8381 page https://www.suse.com/security/cve/CVE-2015-8382/ SUSE CVE CVE-2015-8382 page https://www.suse.com/security/cve/CVE-2015-8383/ SUSE CVE CVE-2015-8383 page https://www.suse.com/security/cve/CVE-2015-8384/ SUSE CVE CVE-2015-8384 page https://www.suse.com/security/cve/CVE-2015-8385/ SUSE CVE CVE-2015-8385 page https://www.suse.com/security/cve/CVE-2015-8386/ SUSE CVE CVE-2015-8386 page https://www.suse.com/security/cve/CVE-2015-8387/ SUSE CVE CVE-2015-8387 page https://www.suse.com/security/cve/CVE-2015-8388/ SUSE CVE CVE-2015-8388 page https://www.suse.com/security/cve/CVE-2015-8389/ SUSE CVE CVE-2015-8389 page https://www.suse.com/security/cve/CVE-2015-8390/ SUSE CVE CVE-2015-8390 page https://www.suse.com/security/cve/CVE-2015-8391/ SUSE CVE CVE-2015-8391 page https://www.suse.com/security/cve/CVE-2015-8392/ SUSE CVE CVE-2015-8392 page https://www.suse.com/security/cve/CVE-2015-8393/ SUSE CVE CVE-2015-8393 page https://www.suse.com/security/cve/CVE-2015-8394/ SUSE CVE CVE-2015-8394 page https://www.suse.com/security/cve/CVE-2015-8395/ SUSE CVE CVE-2015-8395 page https://www.suse.com/security/cve/CVE-2016-1283/ SUSE CVE CVE-2016-1283 page https://www.suse.com/security/cve/CVE-2016-3191/ SUSE CVE CVE-2016-3191 page SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise High Availability Extension 12 SP1 SUSE Linux Enterprise High Availability Extension 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 libpcre1-8.39-5.1 libpcre1-32bit-8.39-5.1 libpcre16-0-8.39-5.1 libpcrecpp0-8.39-5.1 libpcrecpp0-32bit-8.39-5.1 libpcreposix0-8.39-5.1 pcre-devel-8.39-5.1 pcre-devel-static-8.39-5.1 pcre-tools-8.39-5.1 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libpcre1-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libpcrecpp0-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libpcrecpp0-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libpcre1-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libpcrecpp0-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libpcrecpp0-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Desktop 12 SP2 libpcreposix0-8.39-5.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP1 libpcreposix0-8.39-5.1 as a component of SUSE Linux Enterprise High Availability Extension 12 SP2 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Server 12 SP1 libpcre1-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Server 12 SP1 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Server 12 SP1 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Server 12 SP2 libpcre1-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Server 12 SP2 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Server 12 SP2 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libpcre1-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libpcre1-8.39-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libpcre1-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libpcre16-0-8.39-5.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libpcrecpp0-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libpcreposix0-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 pcre-devel-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 pcre-devel-static-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 pcre-tools-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libpcrecpp0-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libpcreposix0-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 pcre-devel-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 pcre-devel-static-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 pcre-tools-8.39-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 libpcrecpp0-8.39-5.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 libpcrecpp0-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 libpcrecpp0-8.39-5.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 libpcrecpp0-32bit-8.39-5.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP2 Heap-based buffer overflow in PCRE 8.36 and earlier allows remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats. CVE-2014-8964 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2014-8964.html CVE-2014-8964 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/924960 SUSE Bug 924960 https://bugzilla.suse.com/933288 SUSE Bug 933288 https://bugzilla.suse.com/936408 SUSE Bug 936408 https://bugzilla.suse.com/958373 SUSE Bug 958373 The compile_branch function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code, cause a denial of service (out-of-bounds heap read and crash), or possibly have other unspecified impact via a regular expression with a group containing a forward reference repeated a large number of times within a repeated outer group that has a zero minimum quantifier. CVE-2015-2325 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-2325.html CVE-2015-2325 https://bugzilla.suse.com/924960 SUSE Bug 924960 https://bugzilla.suse.com/933288 SUSE Bug 933288 https://bugzilla.suse.com/936408 SUSE Bug 936408 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.36 mishandles the /(((a\2)|(a*)\g<-1>))*/ pattern and related patterns with certain internal recursive back references, which allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-2327 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-2327.html CVE-2015-2327 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/957567 SUSE Bug 957567 PCRE before 8.36 mishandles the /((?(R)a|(?1)))+/ pattern and related patterns with certain recursion, which allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-2328 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-2328.html CVE-2015-2328 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/957600 SUSE Bug 957600 Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^(?P=B)((?P=B)(?J:(?P<B>c)(?P<B>a(?P=B)))>WGXCREDITS)/, a different vulnerability than CVE-2015-8384. CVE-2015-3210 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-3210.html CVE-2015-3210 https://bugzilla.suse.com/933288 SUSE Bug 933288 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote attackers to cause a denial of service (stack-based buffer overflow) via a crafted regular expression, as demonstrated by /^(?:(?(1)\\.|([^\\\\W_])?)+)+$/. CVE-2015-3217 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-3217.html CVE-2015-3217 https://bugzilla.suse.com/933878 SUSE Bug 933878 https://bugzilla.suse.com/958373 SUSE Bug 958373 Heap-based buffer overflow in the find_fixedlength function in pcre_compile.c in PCRE before 8.38 allows remote attackers to cause a denial of service (crash) or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an excess closing parenthesis. CVE-2015-5073 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-5073.html CVE-2015-5073 https://bugzilla.suse.com/936227 SUSE Bug 936227 The pcre_exec function in pcre_exec.c in PCRE before 8.38 mishandles a // pattern with a \01 string, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8380 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8380.html CVE-2015-8380 https://bugzilla.suse.com/957566 SUSE Bug 957566 The compile_regex function in pcre_compile.c in PCRE before 8.38 and pcre2_compile.c in PCRE2 before 10.2x mishandles the /(?J:(?|(:(?|(?'R')(\k'R')|((?'R')))H'Rk'Rf)|s(?'R'))))/ and /(?J:(?|(:(?|(?'R')(\z(?|(?'R')(\k'R')|((?'R')))k'R')|((?'R')))H'Ak'Rf)|s(?'R')))/ patterns, and related patterns with certain group references, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8381 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8381.html CVE-2015-8381 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 The match function in pcre_exec.c in PCRE before 8.37 mishandles the /(?:((abcd))|(((?:(?:(?:(?:abc|(?:abcdef))))b)abcdefghi)abc)|((*ACCEPT)))/ pattern and related patterns involving (*ACCEPT), which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (partially initialized memory and application crash) via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, aka ZDI-CAN-2547. CVE-2015-8382 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8382.html CVE-2015-8382 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles certain repeated conditional groups, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8383 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8383.html CVE-2015-8383 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the /(?J)(?'d'(?'d'\g{d}))/ pattern and related patterns with certain recursive back references, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, a related issue to CVE-2015-8392 and CVE-2015-8395. CVE-2015-8384 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8384.html CVE-2015-8384 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the /(?|(\k'Pm')|(?'Pm'))/ pattern and related patterns with certain forward references, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8385 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8385.html CVE-2015-8385 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the interaction of lookbehind assertions and mutually recursive subpatterns, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8386 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8386.html CVE-2015-8386 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles (?123) subroutine calls and related subroutine calls, which allows remote attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8387 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8387.html CVE-2015-8387 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the /(?=di(?<=(?1))|(?=(.))))/ pattern and related patterns with an unmatched closing parenthesis, which allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8388 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8388.html CVE-2015-8388 https://bugzilla.suse.com/936227 SUSE Bug 936227 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the /(?:|a|){100}x/ pattern and related patterns, which allows remote attackers to cause a denial of service (infinite recursion) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8389 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8389.html CVE-2015-8389 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the [: and \\ substrings in character classes, which allows remote attackers to cause a denial of service (uninitialized memory read) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8390 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8390.html CVE-2015-8390 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 The pcre_compile function in pcre_compile.c in PCRE before 8.38 mishandles certain [: nesting, which allows remote attackers to cause a denial of service (CPU consumption) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8391 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8391.html CVE-2015-8391 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles certain instances of the (?| substring, which allows remote attackers to cause a denial of service (unintended recursion and buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, a related issue to CVE-2015-8384 and CVE-2015-8395. CVE-2015-8392 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8392.html CVE-2015-8392 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 pcregrep in PCRE before 8.38 mishandles the -q option for binary files, which might allow remote attackers to obtain sensitive information via a crafted file, as demonstrated by a CGI script that sends stdout data to a client. CVE-2015-8393 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8393.html CVE-2015-8393 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles the (?(<digits>) and (?(R<digits>) conditions, which allows remote attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2015-8394 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8394.html CVE-2015-8394 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 PCRE before 8.38 mishandles certain references, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, a related issue to CVE-2015-8384 and CVE-2015-8392. CVE-2015-8395 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2015-8395.html CVE-2015-8395 https://bugzilla.suse.com/906574 SUSE Bug 906574 https://bugzilla.suse.com/957598 SUSE Bug 957598 https://bugzilla.suse.com/958373 SUSE Bug 958373 The pcre_compile2 function in pcre_compile.c in PCRE 8.38 mishandles the /((?:F?+(?:^(?(R)a+\"){99}-))(?J)(?'R'(?'R'<((?'RR'(?'R'\){97)?J)?J)(?'R'(?'R'\){99|(:(?|(?'R')(\k'R')|((?'R')))H'R'R)(H'R))))))/ pattern and related patterns with named subgroups, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror. CVE-2016-1283 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2016-1283.html CVE-2016-1283 https://bugzilla.suse.com/960837 SUSE Bug 960837 The compile_branch function in pcre_compile.c in PCRE 8.x before 8.39 and pcre2_compile.c in PCRE2 before 10.22 mishandles patterns containing an (*ACCEPT) substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror, aka ZDI-CAN-3542. CVE-2016-3191 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Desktop 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise High Availability Extension 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-32bit-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre1-8.39-5.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libpcre16-0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:pcre-tools-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:libpcreposix0-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-devel-static-8.39-5.1 SUSE Linux Enterprise Software Development Kit 12 SP2:pcre-tools-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP1:libpcrecpp0-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-32bit-8.39-5.1 SUSE Linux Enterprise Workstation Extension 12 SP2:libpcrecpp0-8.39-5.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162971-1/ https://www.suse.com/security/cve/CVE-2016-3191.html CVE-2016-3191 https://bugzilla.suse.com/971741 SUSE Bug 971741