18 matches found
MGASA-2021-0455 Updated icu packages fix security vulnerability
Double free in ICU in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2021-30535...
NewStart CGSL CORE 5.05 / MAIN 5.05 : icu Vulnerability (NS-SA-2020-0115)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has icu packages installed that are affected by a vulnerability: - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists...
EulerOS 2.0 SP3 : icu (EulerOS-SA-2019-2594)
According to the versions of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - International Components for Unicode ICU for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to t...
Updated icu packages fix security vulnerability
The updated packages fix a security vulnerability: International Components for Unicode ICU for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString in i18n/numberdecimalquantity.cpp. CVE-2018-18928...
MGASA-2019-0353 Updated icu packages fix security vulnerability
The updated packages fix a security vulnerability: International Components for Unicode ICU for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString in i18n/numberdecimalquantity.cpp. CVE-2018-18928...
MGASA-2017-0484 Updated icu packages fix security vulnerability
Integer overflow in ICU in the Persian calendar CVE-2017-15422...
Updated icu packages fix security vulnerability
Integer overflow in ICU in the Persian calendar CVE-2017-15422...
EulerOS 2.0 SP2 : icu (EulerOS-SA-2017-1306)
According to the version of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code...
MGASA-2017-0411 Updated icu packages fix security vulnerability
Updated icu packages fix security vulnerability: Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue CVE-2017-14952...
Updated icu packages fix security vulnerability
Updated icu packages fix security vulnerability: Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue CVE-2017-14952...
MGASA-2017-0116 Updated icu packages fix security vulnerability
It was discovered that icu did not correctly validate its input. An attacker could use this problem to trigger an out-of-bound write through a heap-based buffer overflow, thus causing a denial of service via application crash, or potential execution of arbitrary code CVE-2017-7867, CVE-2017-7868...
MGASA-2016-0404 Updated icu packages fix security vulnerability
Stack overflow in uresgetByKeyWithFallback in ICU before 54.1 could lead to a crash CVE-2014-9911. It was found that a big locale string causes a stack based overflow inside libicu in locid.cpp CVE-2016-7415...
MGASA-2016-0314 Updated icu packages fix security vulnerability
Buffer overflow ICU in the ulocacceptLanguageFromHTTP function CVE-2016-6293...
Updated icu packages fix security vulnerability
Buffer overflow ICU in the ulocacceptLanguageFromHTTP function CVE-2016-6293...
Updated icu packages fix security vulnerability
It was discovered that ICU incorrectly handled memory operations when processing fonts. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program CVE-2014-6585, CVE-2014-6591...
MGASA-2015-0102 Updated icu packages fix security vulnerability
It was discovered that ICU incorrectly handled memory operations when processing fonts. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program CVE-2014-6585, CVE-2014-6591...
MGASA-2015-0047 Updated icu packages fix security vulnerabilities
Updated icu packages fix security vulnerabilities: The Regular Expressions package in International Components for Unicode ICU 52 before SVN revision 292944 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via vectors related to a...
MGASA-2013-0315 Updated icu packages fix multiple security vulnerbilities
Updated icu packages fix security vulnerabilities: It was discovered that ICU contained a race condition affecting multi- threaded applications. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the...