Home

CVE-2020-14155

Description

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (C substring.

Risk Information

Base Score
5.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score
Exploitation Probability
0.23

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are affected in Oracle HTTP Server 12.2.1.3.0Windows
Multiple vulnerabilities are affected in Oracle HTTP Server 12.2.1.4.0Windows
Multiple vulnerabilities are fixed in MacOS Big Sur 11.2 - Software UpdateMac
Multiple vulnerabilities are fixed in MacOS Big Sur 11.2.1 - Software UpdateMac
Multiple vulnerabilities are fixed in MacOS Big Sur 11.2.2 - Software UpdateMac
Multiple vulnerabilities are fixed in MacOS Big Sur 11.2.3 - Software UpdateMac
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcre1-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcre1-32bit-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcre1-debuginfo-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcre1-debuginfo-32bit-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcre16-0-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcre16-0-debuginfo-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcrecpp0-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcrecpp0-debuginfo-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcreposix0-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) libpcreposix0-debuginfo-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) pcre-debugsource-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) pcre-devel-8.45-8.7.1.x86_64.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) selinux-policy-20140730-36.5.2.noarch.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) selinux-policy-devel-20140730-36.5.2.noarch.rpmLinux
SUSE-SU-2021:3652-1(SUSE Linux Enterprise Server 12-SP5 ) selinux-policy-minimum-20140730-36.5.2.noarch.rpmLinux
(RHSA-2021:4373)Low: security update pcre-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-cpp-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-cpp-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-cpp-debuginfo-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-cpp-debuginfo-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-debuginfo-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-debuginfo-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-debugsource-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-debugsource-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-devel-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-devel-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-tools-debuginfo-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-tools-debuginfo-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf16-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf16-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf16-debuginfo-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf16-debuginfo-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf32-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf32-8.42-6.el8.x86_64.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf32-debuginfo-8.42-6.el8.i686.rpmLinux
(RHSA-2021:4373)Low: security update pcre-utf32-debuginfo-8.42-6.el8.x86_64.rpmLinux
pcre security update (RLSA-2021:4373) pcre-8.42-6.el8.i686.rpmLinux
pcre security update (RLSA-2021:4373) pcre-8.42-6.el8.x86_64.rpmLinux
pcre security update (RLSA-2021:4373) pcre-cpp-8.42-6.el8.i686.rpmLinux
pcre security update (RLSA-2021:4373) pcre-cpp-8.42-6.el8.x86_64.rpmLinux
pcre security update (RLSA-2021:4373) pcre-devel-8.42-6.el8.i686.rpmLinux
pcre security update (RLSA-2021:4373) pcre-devel-8.42-6.el8.x86_64.rpmLinux
pcre security update (RLSA-2021:4373) pcre-utf16-8.42-6.el8.i686.rpmLinux
pcre security update (RLSA-2021:4373) pcre-utf16-8.42-6.el8.x86_64.rpmLinux
pcre security update (RLSA-2021:4373) pcre-utf32-8.42-6.el8.i686.rpmLinux
pcre security update (RLSA-2021:4373) pcre-utf32-8.42-6.el8.x86_64.rpmLinux
Pcre update (ELSA-2021-4373) pcre-8.42-6.el8.i686.rpmLinux
Pcre update (ELSA-2021-4373) pcre-8.42-6.el8.x86_64.rpmLinux
Pcre-cpp update (ELSA-2021-4373) pcre-cpp-8.42-6.el8.i686.rpmLinux
Pcre-cpp update (ELSA-2021-4373) pcre-cpp-8.42-6.el8.x86_64.rpmLinux
Pcre-devel update (ELSA-2021-4373) pcre-devel-8.42-6.el8.i686.rpmLinux
Pcre-devel update (ELSA-2021-4373) pcre-devel-8.42-6.el8.x86_64.rpmLinux
Pcre-utf16 update (ELSA-2021-4373) pcre-utf16-8.42-6.el8.i686.rpmLinux
Pcre-utf16 update (ELSA-2021-4373) pcre-utf16-8.42-6.el8.x86_64.rpmLinux
Pcre-utf32 update (ELSA-2021-4373) pcre-utf32-8.42-6.el8.i686.rpmLinux
Pcre-utf32 update (ELSA-2021-4373) pcre-utf32-8.42-6.el8.x86_64.rpmLinux
Low: pcre security update pcre-8.42-6.el8.i686.rpmLinux
Low: pcre security update pcre-8.42-6.el8.x86_64.rpmLinux
Low: pcre security update pcre-cpp-8.42-6.el8.i686.rpmLinux
Low: pcre security update pcre-cpp-8.42-6.el8.x86_64.rpmLinux
Low: pcre security update pcre-devel-8.42-6.el8.i686.rpmLinux
Low: pcre security update pcre-devel-8.42-6.el8.x86_64.rpmLinux
Low: pcre security update pcre-utf16-8.42-6.el8.i686.rpmLinux
Low: pcre security update pcre-utf16-8.42-6.el8.x86_64.rpmLinux
Low: pcre security update pcre-utf32-8.42-6.el8.i686.rpmLinux
Low: pcre security update pcre-utf32-8.42-6.el8.x86_64.rpmLinux
Integer Overflow or Wraparound Vulnerability (CVE-2020-14155)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-605752MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064)
PATCH-605752MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064)
PATCH-605752MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064)
PATCH-605752MacOS Big Sur 11.7.10 - Software Update (Force Reboot)(CVE-2023-41064)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234