libicu in International Components for Unicode (ICU) 3.8.1 and previous versions attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent malicious users to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
icu-project international components for unicode |