CVE-2015-2305
UnknownEPSS 8.37%
Last modified
CVE-2015-2305 is a vulnerability of currently unknown severity. Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.. EPSS estimates a 8.37% chance of exploitation in the next 30 days.
Description
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Rxspencer Project | Rxspencer | 3.8.g5 |
| Canonical | Ubuntu Linux | 10.04 |
| Canonical | Ubuntu Linux | 12.04 |
| Canonical | Ubuntu Linux | 14.04 |
| Canonical | Ubuntu Linux | 14.10 |
| Canonical | Ubuntu Linux | 15.04 |
| Debian | Debian Linux | 7.0 |
| Debian | Debian Linux | 8.0 |
| Opensuse | Opensuse | 13.1 |
| Opensuse | Opensuse | 13.2 |
| Php | Php | >= 5.4.0, < 5.4.39 |
| Php | Php | >= 5.5.0, < 5.5.23 |
| Php | Php | >= 5.6.0, < 5.6.7 |
References
- http://blog.clamav.net/2015/04/clamav-0987-has-been-released.htmlThird Party Advisory
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00005.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2015-05/msg00024.htmlMailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=143403519711434&w=2Mailing List, Third Party Advisory
- http://openwall.com/lists/oss-security/2015/02/07/14Mailing List, Third Party Advisory
- http://openwall.com/lists/oss-security/2015/03/11/8Mailing List, Third Party Advisory
- http://php.net/ChangeLog-5.phpVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1053.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1066.htmlThird Party Advisory
- http://www.debian.org/security/2015/dsa-3195Third Party Advisory
- http://www.kb.cert.org/vuls/id/695940Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/72611Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1031947Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2572-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2594-1Third Party Advisory
- https://support.apple.com/HT205267Third Party Advisory
- http://blog.clamav.net/2015/04/clamav-0987-has-been-released.htmlThird Party Advisory
- http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00005.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00026.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-updates/2015-05/msg00024.htmlMailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=143403519711434&w=2Mailing List, Third Party Advisory
- http://openwall.com/lists/oss-security/2015/02/07/14Mailing List, Third Party Advisory
- http://openwall.com/lists/oss-security/2015/03/11/8Mailing List, Third Party Advisory
- http://php.net/ChangeLog-5.phpVendor Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1053.htmlThird Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1066.htmlThird Party Advisory
- http://www.debian.org/security/2015/dsa-3195Third Party Advisory
- http://www.kb.cert.org/vuls/id/695940Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/72611Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1031947Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2572-1Third Party Advisory
- http://www.ubuntu.com/usn/USN-2594-1Third Party Advisory
- https://support.apple.com/HT205267Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-2305?
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
How severe is CVE-2015-2305?
Severity scoring for CVE-2015-2305 is pending analysis. The EPSS model estimates a 8.37% probability of exploitation in the next 30 days.
How do I fix CVE-2015-2305?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2015-2305?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST