Bug 1199235 – VUL-0: CVE-2022-1587: pcre2,pcre8,pcre: pcre2: Out-of-bounds read due to bug in recursions

Bug 1199235 - (CVE-2022-1587) VUL-0: CVE-2022-1587: pcre2,pcre8,pcre: pcre2: Out-of-bounds read due to bug in recursions

(CVE-2022-1587)
Summary:	VUL-0: CVE-2022-1587: pcre2,pcre8,pcre: pcre2: Out-of-bounds read due to bug ...

Status:	RESOLVED FIXED
Duplicates:	1201754 (view as bug list)

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Major
Target Milestone:	---
Assigned To:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/330795/
Whiteboard:	CVSSv3.1:SUSE:CVE-2022-1587:8.6:(AV:N...
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2022-05-05 10:05 UTC by Hu
Modified:	2022-12-20 11:19 UTC (History)
CC List:	4 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Hu 2022-05-05 10:05:51 UTC

rh#2077983

An out-of-bounds read was discovered in PCRE version 10.39, affecting recursions in JIT-compiled regular expressions. The bug is present in the function "get_recurse_data_length", declared in "pcre2_jit_compile.c".

References:

https://github.com/PCRE2Project/pcre2/commit/03654e751e7f0700693526b67dfcadda6b42c9d0

References:
https://bugzilla.redhat.com/show_bug.cgi?id=2077983
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1587

Comment 1 Hu 2022-05-05 10:06:06 UTC

Affected:
 - SUSE:SLE-15:Update/pcre2                10.31
 - SUSE:SLE-12:Update/pcre2                10.34
 - SUSE:SLE-15-SP4:Update/pcre2            10.39

Not Affected:
 - SUSE:SLE-11:Update/pcre                   7.8
 - SUSE:SLE-11-SP3:Update:Teradata/pcre8    8.33
 - SUSE:Carwos:1/pcre                       8.45
 - SUSE:SLE-12:Update/pcre                  8.45
 - SUSE:SLE-15:Update/pcre                  8.45
 - openSUSE:Factory/pcre                    8.45
 - openSUSE:Factory/pcre2                  10.40

Comment 4 Jason Sikes 2022-07-20 05:37:09 UTC

Submitted:

| STREAM:                      | VERSION | STATUS                    |
|------------------------------+---------+---------------------------|
| SUSE:SLE-15:Update/pcre2     |   10.31 | created request id 276153 |
| SUSE:SLE-12:Update/pcre2     |   10.34 | created request id 276154 |
| SUSE:SLE-15-SP4:Update/pcre2 |   10.39 | created request id 276152 |

Comment 6 Swamp Workflow Management 2022-07-27 16:16:59 UTC

SUSE-SU-2022:2565-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1199235
CVE References: CVE-2022-1587
JIRA References: 
Sources used:
SUSE OpenStack Cloud Crowbar 9 (src):    pcre2-10.34-1.10.1
SUSE OpenStack Cloud 9 (src):    pcre2-10.34-1.10.1
SUSE Linux Enterprise Software Development Kit 12-SP5 (src):    pcre2-10.34-1.10.1
SUSE Linux Enterprise Server for SAP 12-SP4 (src):    pcre2-10.34-1.10.1
SUSE Linux Enterprise Server 12-SP5 (src):    pcre2-10.34-1.10.1
SUSE Linux Enterprise Server 12-SP4-LTSS (src):    pcre2-10.34-1.10.1
SUSE Linux Enterprise Server 12-SP3-BCL (src):    pcre2-10.34-1.10.1
SUSE Linux Enterprise Server 12-SP2-BCL (src):    pcre2-10.34-1.10.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 7 Swamp Workflow Management 2022-07-27 16:22:39 UTC

SUSE-SU-2022:2566-1: An update that fixes one vulnerability is now available.

Category: security (important)
Bug References: 1199235
CVE References: CVE-2022-1587
JIRA References: 
Sources used:
openSUSE Leap 15.4 (src):    pcre2-10.39-150400.4.6.1
SUSE Linux Enterprise Module for Basesystem 15-SP4 (src):    pcre2-10.39-150400.4.6.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 8 Swamp Workflow Management 2022-08-03 16:18:08 UTC

SUSE-SU-2022:2649-1: An update that fixes two vulnerabilities is now available.

Category: security (important)
Bug References: 1164384,1199235
CVE References: CVE-2019-20454,CVE-2022-1587
JIRA References: 
Sources used:
openSUSE Leap 15.3 (src):    pcre2-10.31-150000.3.12.1
SUSE Manager Server 4.1 (src):    pcre2-10.31-150000.3.12.1
SUSE Manager Retail Branch Server 4.1 (src):    pcre2-10.31-150000.3.12.1
SUSE Manager Proxy 4.1 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server for SAP 15-SP2 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server for SAP 15-SP1 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server for SAP 15 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server 15-SP2-LTSS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server 15-SP2-BCL (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server 15-SP1-LTSS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server 15-SP1-BCL (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Server 15-LTSS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Module for Basesystem 15-SP3 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Micro 5.2 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise Micro 5.1 (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise High Performance Computing 15-LTSS (src):    pcre2-10.31-150000.3.12.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS (src):    pcre2-10.31-150000.3.12.1
SUSE Enterprise Storage 7 (src):    pcre2-10.31-150000.3.12.1
SUSE Enterprise Storage 6 (src):    pcre2-10.31-150000.3.12.1
SUSE CaaS Platform 4.0 (src):    pcre2-10.31-150000.3.12.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 9 Jason Sikes 2022-08-26 04:20:44 UTC

Done. Assigning to Security Team.

Comment 10 Swamp Workflow Management 2022-09-01 14:08:58 UTC

openSUSE-SU-2022:2649-1: An update that fixes two vulnerabilities is now available.

Category: security (important)
Bug References: 1164384,1199235
CVE References: CVE-2019-20454,CVE-2022-1587
JIRA References: 
Sources used:
openSUSE Leap Micro 5.2 (src):    pcre2-10.31-150000.3.12.1

Comment 11 Bogdano Arendartchuk 2022-09-06 16:26:00 UTC

*** Bug 1201754 has been marked as a duplicate of this bug. ***

Comment 12 Hu 2022-12-20 11:19:01 UTC

done