Lucene search
K

18 matches found

OSV
OSV
added 2021/10/02 6:57 p.m.4 views

MGASA-2021-0455 Updated icu packages fix security vulnerability

Double free in ICU in Google Chrome prior to 91.0.4472.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2021-30535...

8.8CVSS8.7AI score0.01128EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.34 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : icu Vulnerability (NS-SA-2020-0115)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has icu packages installed that are affected by a vulnerability: - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists...

8.8CVSS7.8AI score0.02669EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.60 views

EulerOS 2.0 SP3 : icu (EulerOS-SA-2019-2594)

According to the versions of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - International Components for Unicode ICU for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to t...

10CVSS7.5AI score0.07514EPSS
Exploits2References9
Mageia
Mageia
added 2019/12/06 2:15 p.m.19 views

Updated icu packages fix security vulnerability

The updated packages fix a security vulnerability: International Components for Unicode ICU for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString in i18n/numberdecimalquantity.cpp. CVE-2018-18928...

9.8CVSS3.7AI score0.02918EPSS
Exploits0References2
OSV
OSV
added 2019/12/06 2:15 p.m.9 views

MGASA-2019-0353 Updated icu packages fix security vulnerability

The updated packages fix a security vulnerability: International Components for Unicode ICU for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString in i18n/numberdecimalquantity.cpp. CVE-2018-18928...

9.8CVSS9.4AI score0.02918EPSS
Exploits0References3
OSV
OSV
added 2017/12/31 3:14 p.m.3 views

MGASA-2017-0484 Updated icu packages fix security vulnerability

Integer overflow in ICU in the Persian calendar CVE-2017-15422...

6.5CVSS7.9AI score0.02479EPSS
Exploits0References4
Mageia
Mageia
added 2017/12/31 3:14 p.m.44 views

Updated icu packages fix security vulnerability

Integer overflow in ICU in the Persian calendar CVE-2017-15422...

6.5CVSS5AI score0.02479EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/12/01 12:0 a.m.42 views

EulerOS 2.0 SP2 : icu (EulerOS-SA-2017-1306)

According to the version of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code...

9.8CVSS7.8AI score0.05096EPSS
Exploits0References2
OSV
OSV
added 2017/11/16 8:36 a.m.8 views

MGASA-2017-0411 Updated icu packages fix security vulnerability

Updated icu packages fix security vulnerability: Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue CVE-2017-14952...

9.8CVSS9.5AI score0.05096EPSS
Exploits0References2
Mageia
Mageia
added 2017/11/16 8:36 a.m.43 views

Updated icu packages fix security vulnerability

Updated icu packages fix security vulnerability: Double free in i18n/zonemeta.cpp in International Components for Unicode ICU for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue CVE-2017-14952...

9.8CVSS9.6AI score0.05096EPSS
Exploits0References1
OSV
OSV
added 2017/04/24 7:27 a.m.6 views

MGASA-2017-0116 Updated icu packages fix security vulnerability

It was discovered that icu did not correctly validate its input. An attacker could use this problem to trigger an out-of-bound write through a heap-based buffer overflow, thus causing a denial of service via application crash, or potential execution of arbitrary code CVE-2017-7867, CVE-2017-7868...

7.5CVSS7.7AI score0.0463EPSS
Exploits0References3
OSV
OSV
added 2016/11/27 12:34 p.m.4 views

MGASA-2016-0404 Updated icu packages fix security vulnerability

Stack overflow in uresgetByKeyWithFallback in ICU before 54.1 could lead to a crash CVE-2014-9911. It was found that a big locale string causes a stack based overflow inside libicu in locid.cpp CVE-2016-7415...

9.8CVSS9.5AI score0.05798EPSS
Exploits1References4
OSV
OSV
added 2016/09/21 8:38 p.m.5 views

MGASA-2016-0314 Updated icu packages fix security vulnerability

Buffer overflow ICU in the ulocacceptLanguageFromHTTP function CVE-2016-6293...

9.8CVSS9.6AI score0.04957EPSS
Exploits1References3
Mageia
Mageia
added 2016/09/21 8:38 p.m.45 views

Updated icu packages fix security vulnerability

Buffer overflow ICU in the ulocacceptLanguageFromHTTP function CVE-2016-6293...

9.8CVSS3.8AI score0.04957EPSS
Exploits1References2
Mageia
Mageia
added 2015/03/10 4:48 p.m.62 views

Updated icu packages fix security vulnerability

It was discovered that ICU incorrectly handled memory operations when processing fonts. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program CVE-2014-6585, CVE-2014-6591...

2.6CVSS6.7AI score0.04297EPSS
Exploits0References2
OSV
OSV
added 2015/03/10 4:48 p.m.6 views

MGASA-2015-0102 Updated icu packages fix security vulnerability

It was discovered that ICU incorrectly handled memory operations when processing fonts. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program CVE-2014-6585, CVE-2014-6591...

2.6CVSS5.1AI score0.04297EPSS
Exploits0References3
OSV
OSV
added 2015/01/31 1:23 p.m.10 views

MGASA-2015-0047 Updated icu packages fix security vulnerabilities

Updated icu packages fix security vulnerabilities: The Regular Expressions package in International Components for Unicode ICU 52 before SVN revision 292944 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via vectors related to a...

7.5CVSS9.9AI score0.02217EPSS
Exploits0References3
OSV
OSV
added 2013/10/25 8:57 p.m.7 views

MGASA-2013-0315 Updated icu packages fix multiple security vulnerbilities

Updated icu packages fix security vulnerabilities: It was discovered that ICU contained a race condition affecting multi- threaded applications. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the...

7.5CVSS7.3AI score0.02531EPSS
Exploits0References3
Rows per page
Query Builder