Download
| Alert*
oval:org.secpod.oval:def:500607
The International Components for Unicode library provides robust and full-featured Unicode services. A flaw was found in the way ICU processed certain, invalid, encoded data. If an application used ICU to decode malformed, multibyte, character data, it may have been possible to bypass certain conte ... oval:org.secpod.oval:def:1800086 icu is installed oval:org.secpod.oval:def:1800820 CVE-2017-7867: Heap-buffer overflow in utext_setNativeIndex function oval:org.secpod.oval:def:1800896 CVE-2017-7867: Heap-buffer overflow in utext_setNativeIndex function oval:org.secpod.oval:def:202134 The International Components for Unicode library provides robust and full-featured Unicode services. A flaw was found in the way ICU processed certain, invalid byte sequences during Unicode conversion. If an application used ICU to decode malformed, multibyte character data, it may have been possib ... oval:org.secpod.oval:def:202161 The International Components for Unicode library provides robust and full-featured Unicode services. A flaw was found in the way ICU processed certain, invalid byte sequences during Unicode conversion. If an application used ICU to decode malformed, multibyte character data, it may have been possib ... oval:org.secpod.oval:def:1802076 Blackduck security scanner finds in icu-libs 67.1 ICU4C Vulnerable to Denial-of-Service (DoS) via Memory Management Issues in 'FormattedValueStringBuilderImpl' Class. ICU4C (a C++ implementation of the ICU library) is vulnerable to denial-of-service (DoS) due to memory management issues in certain s ... oval:org.secpod.oval:def:203057 icu is installed oval:org.secpod.oval:def:66531 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:503563 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:503561 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:503565 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:201443 The International Components for Unicode library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application ... oval:org.secpod.oval:def:1601284 A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application linked against ICU, it could cause the application to crash or, possibly, execute arbitrary code with ... oval:org.secpod.oval:def:500691 The International Components for Unicode library provides robust and full-featured Unicode services. A flaw was found in the way ICU processed certain, invalid byte sequences during Unicode conversion. If an application used ICU to decode malformed, multibyte character data, it may have been possib ... oval:org.secpod.oval:def:111632 Tools and utilities for developing with icu. oval:org.secpod.oval:def:111637 Tools and utilities for developing with icu. oval:org.secpod.oval:def:115395 Tools and utilities for developing with icu. oval:org.secpod.oval:def:202845 The International Components for Unicode library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application ... oval:org.secpod.oval:def:89047376 This update for icu fixes the following issues: - CVE-2020-21913: Fixed a memory safetey issue that could lead to use after free . oval:org.secpod.oval:def:89050444 This update for icu fixes the following issues: - CVE-2020-10531: Fixed a potential integer overflow in UnicodeString:doAppend . oval:org.secpod.oval:def:1802067 An issue was discovered in International Components for Unicode for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp. oval:org.secpod.oval:def:1800085 The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode through 57.1 for C/C++ does not ensure that there is a "\0" character at the end of a certain temporary array, which allows remote attackers to cause a denial of service or possibly have unspecified ... oval:org.secpod.oval:def:111585 Tools and utilities for developing with icu. oval:org.secpod.oval:def:1800150 The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode through 57.1 for C/C++ does not ensure that there is a "\0" character at the end of a certain temporary array, which allows remote attackers to cause a denial of service or possibly have unspecified ... oval:org.secpod.oval:def:106047 Tools and utilities for developing with icu. oval:org.secpod.oval:def:105804 Tools and utilities for developing with icu. oval:org.secpod.oval:def:108785 Tools and utilities for developing with icu. oval:org.secpod.oval:def:109591 Tools and utilities for developing with icu. oval:org.secpod.oval:def:1503318 Updated icu packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is availabl ... oval:org.secpod.oval:def:500264 The International Components for Unicode library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application ... oval:org.secpod.oval:def:200225 The International Components for Unicode library provides robust and full-featured Unicode services. A stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application ... oval:org.secpod.oval:def:108593 Tools and utilities for developing with icu. oval:org.secpod.oval:def:108550 Tools and utilities for developing with icu. oval:org.secpod.oval:def:108771 Tools and utilities for developing with icu. oval:org.secpod.oval:def:1800341 Stack-based buffer overflow in the Locale class in common/locid.cpp in International Components for Unicode through 57.1 for C/C++ allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long locale string. Fixed In Version icu 58.1 oval:org.secpod.oval:def:1800319 Stack-based buffer overflow in the Locale class in common/locid.cpp in International Components for Unicode through 57.1 for C/C++ allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long locale string. Fixed In Version: icu 58.1 oval:org.secpod.oval:def:112307 Tools and utilities for developing with icu. oval:org.secpod.oval:def:112338 Tools and utilities for developing with icu. oval:org.secpod.oval:def:1800558 CVE-2017-7867: Heap-buffer overflow in utext_setNativeIndex function oval:org.secpod.oval:def:113413 Tools and utilities for developing with icu. oval:org.secpod.oval:def:113533 Tools and utilities for developing with icu. oval:org.secpod.oval:def:115074 Tools and utilities for developing with icu. oval:org.secpod.oval:def:205469 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:2500097 The International Components for Unicode library provides robust and full-featured Unicode services. oval:org.secpod.oval:def:1700330 An issue was discovered in International Components for Unicode for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend function in common/unistr.cpp oval:org.secpod.oval:def:205473 The International Components for Unicode library provides robust and full-featured Unicode services. Security Fix: * ICU: Integer overflow in UnicodeString::doAppend For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer ... oval:org.secpod.oval:def:89044796 icu was updated to fix two security issues. These security issues were fixed: - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode used an integer data type that is inconsistent w ... |