icu (4.8.1.1-3ubuntu0.10) precise-security; urgency=medium
* SECURITY UPDATE: Integer Overflow
- debian/patches/CVE-2020-10531.patch: adds a int32_t overflow
check when calculate a newLen in doReplace function in
source/common/unistr.cpp.
- CVE-2020-10531
icu (4.8.1.1-3ubuntu0.9) precise-security; urgency=medium
* SECURITY UPDATE: double free
- debian/patches/CVE-2017-14952.patch: fixes double free in
createMetaZoneMappings() source/i18n/zonemeta.cpp.
- CVE-2017-14952
icu (4.8.1.1-3ubuntu0.8) precise-security; urgency=medium
* SECURITY UPDATE: out of bounds write in common/utext.cpp
(LP: #1684298)
- debian/patches/CVE-2017-786x.patch: properly handle hunk size in
source/common/utext.cpp, added test to
source/test/intltest/utxttest.cpp, source/test/intltest/utxttest.h.
- debian/patches/CVE-2017-786x-additional.patch: this patch was originally
typed to debian Wheezy and applied here in order to adapt the original
fix to Precise. Thanks to Roberto C. Sànchez.
- CVE-2017-7867
- CVE-2017-7868
Date: 2020-03-16 18:14:26.164013+00:00
Changed-By: leo.barb...@canonical.com (Leonidas S. Barbosa)
Signed-By: Ubuntu Archive Robot <ubuntu-archive-ro...@lists.canonical.com>
https://launchpad.net/ubuntu/+source/icu/4.8.1.1-3ubuntu0.10
Sorry, changesfile not available.
--
Precise-changes mailing list
Precise-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/precise-changes