Debian Security Advisory DSA 800-1 (pcre3)

The remote host is missing an update to pcre3 announced via advisory DSA 800-1. An integer overflow with subsequent buffer overflow has been detected in PCRE, the Perl Compatible Regular Expressions library, which allows an attacker to execute arbitrary code. Since several packages link dynamically to this library you are advised to restart the corresponding services or programs respectively. The command ``apt-caches showpkg libpcre3'' will list the corresponding packages in the Reverse Depends: section. For the old stable distribution (woody) this problem has been fixed in version 3.4-1.1woody1.

For the stable distribution (sarge) this problem has been fixed in version 4.5-1.2sarge1. For the unstable distribution (sid) this problem has been fixed in version 6.3-1. We recommend that you upgrade your libpcre3 package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20800-1