Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2017-15422

Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

Related bugs and status

CVE-2017-15422 (Candidate) is related to these bugs:

Bug #1652110: Chromium 55+ doesn't support Widevine library

Summary				In	Importance	Status
	1652110	Chromium 55+ doesn't support Widevine library		chromium-browser (Ubuntu)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://chromereleases...
MISC: https://crbug.com/774382
DEBIAN: DSA-4150
GENTOO: GLSA-201801-03
REDHAT: RHSA-2017:3401
UBUNTU: USN-3610-1