52 matches found
EUVD-2020-2984
Malware in sbrugna...
BIT-NODE-MIN-2020-10531
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
ROS-20240709-01
Vulnerability of the function UnicodeString::doAppend unistr.cpp of the International Components for Unicode library is related to integer overflow of the data structure. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to sensitive data, cause...
OSV-2023-905 Segv on unknown address in icu_74::UnicodeString::copyFrom
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62651 Crash type: Segv on unknown address Crash state: icu74::UnicodeString::copyFrom icu74::UnicodeString::UnicodeString icu74::number::impl::SimpleModifier::SimpleModifier...
openSUSE 15 Security Update : icu73_2 (SUSE-SU-2023:3563-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3563-1 advisory. - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer...
Oracle Linux 8 : icu (ELSA-2020-0902)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0902 advisory. 60.3-2 - Apply ICU-13634-Adding-integer-overflow-logic-to-ICU4C-num.patch - Apply ICU-20958-Prevent-SEGVMAPERR-in-append.patch - Resolves: rhbz1808238 Tenable h...
SUSE CVE-2020-10531
An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp...
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-10531)
Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to security vulnerability. The vulnerability concerns Open Source - 1 issues for icu. Vulnerability Details CVEID: CVE-2020-10531 DESCRIPTION: International Components for Unicode ICU for C/C...
EulerOS 2.0 SP3 : icu (EulerOS-SA-2021-1801)
According to the version of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer...
SUSE: Security Advisory (SUSE-SU-2020:1180-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL CORE 5.05 / MAIN 5.05 : icu Vulnerability (NS-SA-2020-0115)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has icu packages installed that are affected by a vulnerability: - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists...
EulerOS Virtualization 3.0.2.2 : icu (EulerOS-SA-2020-2223)
According to the version of the icu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based...
NewStart CGSL CORE 5.04 / MAIN 5.04 : icu Vulnerability (NS-SA-2020-0043)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has icu packages installed that are affected by a vulnerability: - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists...
NewStart CGSL MAIN 4.05 : icu Vulnerability (NS-SA-2020-0053)
The remote NewStart CGSL host, running version MAIN 4.05, has icu packages installed that are affected by a vulnerability: - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the...
OSV-2020-845 Use-of-uninitialized-value in isMatchAtCPBoundary
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19497 Crash type: Use-of-uninitialized-value Crash state: isMatchAtCPBoundary ustrFindFirst66 icu66::UnicodeString::indexOf...
Remote Code Execution (RCE)
ICU is vulnerable to remote code execution RCE. The vulnerability exists through an integer overflow in UnicodeString::doAppend...
EulerOS Virtualization 3.0.6.0 : icu (EulerOS-SA-2020-1777)
According to the version of the icu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based...
Huawei EulerOS: Security Advisory for icu (EulerOS-SA-2020-1602)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : icu (EulerOS-SA-2020-1602)
According to the version of the icu packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer...
Amazon Linux 2 : icu (ALAS-2020-1418)
The version of icu installed on the remote host is prior to 50.2-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1418 advisory. An issue was discovered in International Components for Unicode ICU for C/C++ through 66.1. An integer overflow, leading to a heap-based...