Lucene search
K

19 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/31 6:58 p.m.6 views

Security Bulletin: IBM i is affected by multiple vulnerabilities in International Components for Unicode (ICU) option 39 [CVE-2017-14952 CVE-2011-4599 CVE-2017-17484].

Summary International Components for Unicode ICU is a C and C++ library that provides Unicode services used for writing global applications in ILE programming languages. IBM i licensed program option 39 International Components for Unicode is currently built using ICU4C version 4.0. This version...

9.8CVSS9.6AI score0.08003EPSS
Exploits1Affected Software6
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2017-14952

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a...

9.8CVSS7.6AI score0.05096EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 7 : icu (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - icu: Double free in i18n/zonemeta.cpp CVE-2017-14952 - The ulocacceptLanguageFromHTTP function in...

9.1AI score0.05798EPSS
Exploits2References4
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/02 12:50 p.m.68 views

Security Bulletin: IBM DataPower Gateway Virtual Edition uses out of date ICU libraries in open-vm-tools

Summary Open-vm-tools is used only in IBM DataPower Gateway Virtual Edition for communicating with the Hypervisor to perform such tasks as reboot or shutdown of the VM. The limited functionality employed in this use should not expose these CVEs to exploitation; IBM has addressed the CVEs out of a...

9.8CVSS9AI score0.2447EPSS
Exploits4Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2017-0411)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.05096EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2018:1602-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.05096EPSS
Exploits2References9
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:1401-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.2447EPSS
Exploits6References11
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:1401-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.2447EPSS
Exploits6References11
Tenable Nessus
Tenable Nessus
added 2020/10/14 12:0 a.m.69 views

Photon OS 2.0: Icu PHSA-2020-2.0-0288

An update of the icu package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0288. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid141442;...

10CVSS7.8AI score0.07514EPSS
Exploits3References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for icu (EulerOS-SA-2017-1305)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.05459EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for icu (EulerOS-SA-2019-1453)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.05459EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.59 views

SUSE SLES12 Security Update : icu (SUSE-SU-2018:1401-2)

icu was updated to fix two security issues. These security issues were fixed : CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode ICU used an integer data type that is...

9.8CVSS8.2AI score0.2447EPSS
Exploits6References25
Tenable Nessus
Tenable Nessus
added 2018/05/24 12:0 a.m.287 views

SUSE SLED12 / SLES12 Security Update : icu (SUSE-SU-2018:1401-1)

icu was updated to fix two security issues. These security issues were fixed : - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode ICU used an integer data type that is...

9.8CVSS8.1AI score0.2447EPSS
Exploits6References25
Tenable Nessus
Tenable Nessus
added 2017/12/01 12:0 a.m.42 views

EulerOS 2.0 SP2 : icu (EulerOS-SA-2017-1306)

According to the version of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code...

9.8CVSS7.8AI score0.05096EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/11/23 12:0 a.m.27 views

Fedora Update for icu FEDORA-2017-856e8f657d

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.05096EPSS
Exploits0References2
Mageia
Mageia
added 2017/11/16 8:36 a.m.44 views

Updated icu packages fix security vulnerability

Updated icu packages fix security vulnerability: Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue CVE-2017-14952...

9.8CVSS9.6AI score0.05096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/11/08 1:20 p.m.25 views

CVE-2017-14952

Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue...

9.8CVSS7.9AI score0.05096EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/10/16 4:0 p.m.25 views

CVE-2017-14952

Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue...

9.8CVSS9.8AI score0.05096EPSS
Exploits0
CVE
CVE
added 2017/10/16 4:0 p.m.174 views

CVE-2017-14952

ICU (ICU4C) for C/C++ up to 59.1 contains a double-free in i18n/zonemeta.cpp (CVE-2017-14952), enabling remote arbitrary code execution via a crafted string. IBM/Db2 and IBM i advisories reference this CVE among ICU-related flaws; remediation involves applying the ICU fix release as indicated by ...

9.8CVSS9.5AI score0.05096EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder