Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) prior to 49.1 allows remote malicious users to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
icu-project international components for unicode |