CVE-2017-7867

Debian Bug report logs - #860314 icu: CVE-2017-7867 CVE-2017-7868: Heap-buffer-overflow in utf8TextAccess Package: src:icu; Maintainer for src:icu is Laszlo Boszormenyi (GCS) <gcs@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 14 Apr 2017 12:45:01 UTC Severity: grave Tags: patch, securi ...

Several security issues were fixed in ICU ...

Several security issues were fixed in ICU ...

It was discovered that icu, the International Components for Unicode library, did not correctly validate its input An attacker could use this problem to trigger an out-of-bound write through a heap-based buffer overflow, thus causing a denial of service via application crash, or potential execution of arbitrary code For the stable distribution (j ...

A vulnerability was found in the International Components for Unicode (ICU) Specially crafted invalid utf-8 text, when parsed or manipulated using particular functions in libicu, could cause out-of-bounds heap reads and writes potentially leading to a crash, memory disclosure, or possibly code execution ...