Computer Security
[EN] securityvulns.ru no-pyccku


libicu memory corruption
Published:05.10.2015
Source:
SecurityVulns ID:14704
Type:library
Threat Level:
6/10
Description:Memory corruption on symbols parsing.
CVE:CVE-2015-4760 (Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.)
 CVE-2015-2632 (Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to 2D.)
 CVE-2015-1270 (The ucnv_io_getConverterName function in common/ucnv_io.cpp in International Components for Unicode (ICU), as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- substrings, which allows remote attackers to cause a denial of service (read of uninitialized memory) or possibly have unspecified other impact via a crafted file.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 3360-1] icu security update (05.10.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod