Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2015-2305

Published: 30/03/2015 Updated: 16/08/2022
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Rxspencer Project

Vulnerability Summary

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD up to and including 6.1.5 and other products, might allow context-dependent malicious users to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

rxspencer project rxspencer 3.8.g5

debian debian linux 8.0

debian debian linux 7.0

canonical ubuntu linux 14.10

canonical ubuntu linux 15.04

opensuse opensuse 13.1

opensuse opensuse 13.2

canonical ubuntu linux 14.04

canonical ubuntu linux 10.04

canonical ubuntu linux 12.04

php php

Vendor Advisories

Debian CVElist Bug Report Logs: php5: CVE-2015-2331
Debian Bug report logs - #780713 php5: CVE-2015-2331 Package: src:php5; Maintainer for src:php5 is Debian PHP Maintainers <pkg-php-maint@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 18 Mar 2015 09:24:07 UTC Severity: grave Tags: security Found in versions php5/566+dfsg-1, p ...
Debian CVElist Bug Report Logs: php5: CVE-2015-2305: Henry Spencer regular expressions (regex) library contains a heap overflow vulnerability
Debian Bug report logs - #778389 php5: CVE-2015-2305: Henry Spencer regular expressions (regex) library contains a heap overflow vulnerability Package: php5; Maintainer for php5 is Debian PHP Maintainers <pkg-php-maint@listsaliothdebianorg>; Source for php5 is src:php5 (PTS, buildd, popcon) Reported by: Luciano Bello < ...
Ubuntu Security Notice: php5 vulnerabilities
Several security issues were fixed in PHP ...
Ubuntu Security Notice: clamav vulnerabilities
ClamAV could be made to crash or run programs if it processed a specially crafted file ...
Red Hat: CVE-2015-2305
A heap buffer overflow flaw was found in the regcomp() function of Henry Spencer's regular expression library An attacker able to make an application process a specially crafted regular expression pattern with the regcomp() function could cause that application to crash and possibly execute arbitrary code ...
Amazon Linux AMI: ALAS-2015-506
A use-after-free flaw was found in the way PHP's unserialize() function processed data If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code (CVE-2015-0231) An integer overflow flaw, leading to a heap-based buffer overflow, was found ...
Amazon Linux AMI: ALAS-2015-508
A use-after-free flaw was found in the way PHP's unserialize() function processed data If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code (CVE-2015-0231) An integer overflow flaw, leading to a heap-based buffer overflow, was found ...
Amazon Linux AMI: ALAS-2015-507
A use-after-free flaw was found in the way PHP's unserialize() function processed data If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code (CVE-2015-0231) An integer overflow flaw, leading to a heap-based buffer overflow, was found ...
Amazon Linux AMI: ALAS-2015-524
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha38g5 on 32-bit platforms, as used in NetBSD through 615 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow ...

References

CWE-190http://openwall.com/lists/oss-security/2015/02/07/14http://www.kb.cert.org/vuls/id/695940https://guidovranken.wordpress.com/2015/02/04/full-disclosure-heap-overflow-in-h-spencers-regex-library-on-32-bit-systems/http://openwall.com/lists/oss-security/2015/03/11/8http://www.debian.org/security/2015/dsa-3195http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.htmlhttp://www.securitytracker.com/id/1031947http://php.net/ChangeLog-5.phphttp://blog.clamav.net/2015/04/clamav-0987-has-been-released.htmlhttp://www.ubuntu.com/usn/USN-2594-1http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.htmlhttps://support.apple.com/HT205267http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlhttp://marc.info/?l=bugtraq&m=143403519711434&w=2http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.htmlhttp://www.ubuntu.com/usn/USN-2572-1http://www.securityfocus.com/bid/72611http://rhn.redhat.com/errata/RHSA-2015-1066.htmlhttp://rhn.redhat.com/errata/RHSA-2015-1053.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-05/msg00005.htmlhttp://lists.opensuse.org/opensuse-updates/2015-05/msg00024.htmlhttps://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780713https://usn.ubuntu.com/2572-1/https://access.redhat.com/security/cve/cve-2015-2305
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook