ICU vulnerability

2009-03-2600:00:00

ubuntu.com

6.2 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.8%

JSON

Releases

Ubuntu 8.10
Ubuntu 8.04
Ubuntu 7.10
Ubuntu 6.06

Packages

icu -

Details

It was discovered that libicu did not correctly handle certain invalid
encoded data. If a user or automated system were tricked into processing
specially crafted data with applications linked against libicu, certain
content filters could be bypassed.

OSVersionArchitecturePackageVersionFilename
Ubuntu8.10noarchlibicu38< 3.8.1-2ubuntu0.1UNKNOWN
Ubuntu8.10noarchlib32icu-dev< 3.8.1-2ubuntu0.1UNKNOWN
Ubuntu8.10noarchlib32icu38< 3.8.1-2ubuntu0.1UNKNOWN
Ubuntu8.10noarchlibicu-dev< 3.8.1-2ubuntu0.1UNKNOWN
Ubuntu8.10noarchlibicu38< dbg-3.8.1-2ubuntu0.1UNKNOWN
Ubuntu8.04noarchlibicu38< 3.8-6ubuntu0.1UNKNOWN
Ubuntu8.04noarchlib32icu-dev< 3.8-6ubuntu0.1UNKNOWN
Ubuntu8.04noarchlib32icu38< 3.8-6ubuntu0.1UNKNOWN
Ubuntu8.04noarchlibicu-dev< 3.8-6ubuntu0.1UNKNOWN
Ubuntu8.04noarchlibicu38-dbg< 3.8-6ubuntu0.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	8.10	noarch	libicu38	< 3.8.1-2ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	lib32icu-dev	< 3.8.1-2ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	lib32icu38	< 3.8.1-2ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	libicu-dev	< 3.8.1-2ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	libicu38	< dbg-3.8.1-2ubuntu0.1	UNKNOWN
Ubuntu	8.04	noarch	libicu38	< 3.8-6ubuntu0.1	UNKNOWN
Ubuntu	8.04	noarch	lib32icu-dev	< 3.8-6ubuntu0.1	UNKNOWN
Ubuntu	8.04	noarch	lib32icu38	< 3.8-6ubuntu0.1	UNKNOWN
Ubuntu	8.04	noarch	libicu-dev	< 3.8-6ubuntu0.1	UNKNOWN
Ubuntu	8.04	noarch	libicu38-dbg	< 3.8-6ubuntu0.1	UNKNOWN