MiracleLinux 3 : icu-3.6-5.16.1 (AXSA:2011-562:02)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2011-562:02 advisory. Tools and utilities for developing with icu. Security issues fixed with this release: CVE-2011-4599 No information available at the time of writing, please...

MiracleLinux 4 : icu-4.2.1-9.1.AXS4 (AXSA:2012-08:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-08:01 advisory. Tools and utilities for developing with icu. Security issues fixed with this release: CVE-2011-4599 No information available at the time of writing, please ref...

Security Bulletin: IBM i is affected by multiple vulnerabilities in International Components for Unicode (ICU) option 39 [CVE-2017-14952 CVE-2011-4599 CVE-2017-17484].

Summary International Components for Unicode ICU is a C and C++ library that provides Unicode services used for writing global applications in ILE programming languages. IBM i licensed program option 39 International Components for Unicode is currently built using ICU4C version 4.0. This version...

Security Bulletin: Due to use of International Components for Unicode, IBM Rational ClearQuest is vulnerable to buffer overflow.

Summary Multiple vulnerabilities in International Components for Unicode used within IBM Rational ClearQuest have been addressed CVE-2020-10531, CVE-2011-4599, CVE-2014-8146 Vulnerability Details CVEID:CVE-2020-10531 DESCRIPTION: International Components for Unicode ICU for C/C++ is vulnerable to...

Security Bulletin: A security vulnerability has been identified in WebSphere MQ shipped with WebSphere Remote Server (CVE-2011-4599)

Summary WebSphere MQ is shipped as a component of WebSphere Remote Server. Information about a security vulnerability affecting WebSphere MQ has been published in a security bulletin. Vulnerability Details For vulnerability details, see the security bulletin ICU4C overflow vulnerability affects I...

Amazon Linux: Security Advisory (ALAS-2012-33)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : icu (openSUSE-SU-2012:0100-1)

Specially crafted strings could cause a buffer overflow in icu CVE-2011-4599. An integer overflow in the getSymbol function could crash applications using icu CVE-2010-4409 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

openSUSE Security Update : icu (openSUSE-SU-2012:0100-1)

Specially crafted strings could cause a buffer overflow in icu CVE-2011-4599. An integer overflow in the getSymbol function could crash applications using icu CVE-2010-4409 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Amazon Linux AMI : icu (ALAS-2012-33)

A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially crafted locale representation was opened in an application linked against ICU, it could cause the application to crash or, possibly, execute arbitrary code wi...

SuSE 11.2 Security Update : icu (SAT Patch Number 7204)

This update is rereleased because some architectures were missed on the first try. It fixes the following security issues : - Specially crafted strings could cause a buffer overflow in icu. CVE-2011-4599 - An integer overflow in the getSymbol function could crash applications using icu...

Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004)

This host is missing an important security update according to Mac OS X 10.6.8 Update/Mac OS X Security Update 2012-004. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Mac OS X Multiple Vulnerabilities (Security Update 2012-004) (BEAST)

The remote host is running a version of Mac OS X 10.6 that does not have Security Update 2012-004 applied. This update contains multiple security-related fixes for the following components : - Apache - Data Security - DirectoryService - ImageIO - International Components for Unicode - Mail - PHP ...

Mac OS X 10.7.x < 10.7.5 Multiple Vulnerabilities (BEAST)

The remote host is running a version of Mac OS X 10.7.x that is prior to 10.7.5. The newer version contains multiple security-related fixes for the following components : - Apache - BIND - CoreText - Data Security - ImageIO - Installer - International Components for Unicode - Kernel - Mail - PHP ...

Scientific Linux Security Update : icu on SL5.x, SL6.x i386/x86_64

The International Components for Unicode ICU library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially crafted locale representation was opened in an...

CentOS Update for icu CESA-2011:1815 centos5 x86_64

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for icu CESA-2011:1815 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2011-4599

Stack-based buffer overflow in the canonicalize function in common/uloc.c in International Components for Unicode ICU before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization...

CVE-2011-4599

ICU vulnerability CVE-2011-4599 is described in IBM/Intel ICU-related advisories as a stack-based buffer overflow in the _canonicalize function (common/uloc.c) of ICU prior to 49.1, allowing remote code execution via crafted locale IDs during variant canonicalization. Connected sources also refer...

[SECURITY] [DSA 2397-1] icu security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2397-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 29, 2012 http://www.debian.org/security/faq -...

SuSE 11.1 Security Update : icu (SAT Patch Number 5653)

The following bugs have been fixed : - Specially crafted strings could cause a buffer overflow in icu. CVE-2011-4599 - An integer overflow in the getSymbol function could crash applications using icu CVE-2010-4409 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...