icu 3.4.1a-1ubuntu1.6.06.1 source package in Ubuntu
Changelog
icu (3.4.1a-1ubuntu1.6.06.1) dapper-security; urgency=low
* SECURITY UPDATE: possible read from and write to out of bounds memory
locations via back reference '\0' in regular expressions
* SECURITY UPDATE: denial of service due to memory exhaustion via a
crafted regular expression
* debian/patches/SECURITY_CVE-2007-4770_4771.patch: fix regexcmp.cpp to
return error on invalid back reference. fix rematch.cpp, uvectr32.h and
uvectr32.cpp to return error when capacity is greater than maxCapacity
* References
CVE-2007-4770
CVE-2007-4771
-- Jamie Strandboge <email address hidden> Thu, 20 Mar 2008 14:31:40 -0400
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Dapper
- Original maintainer:
- Jay Berkenbilt
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| icu_3.4.1a.orig.tar.gz | 8.6 MiB | e59631d0589cae0131b32aacc3d25b3bb10e3e664c62e40ca7f98933fe7fbb6e |
| icu_3.4.1a-1ubuntu1.6.06.1.diff.gz | 10.7 KiB | 834670379eb1cb949c1736da984dc0540f978b01d38a8a6dff9c025bc8353baa |
| icu_3.4.1a-1ubuntu1.6.06.1.dsc | 619 bytes | f71ad5ef52dff1d9885ae0f1ec399cc23f082edc1e5ce37670010b76f656a214 |
Binary packages built by this source
- icu-doc: No summary available for icu-doc in ubuntu dapper.
No description available for icu-doc in ubuntu dapper.
- libicu34: No summary available for libicu34 in ubuntu dapper.
No description available for libicu34 in ubuntu dapper.
- libicu34-dev: No summary available for libicu34-dev in ubuntu dapper.
No description available for libicu34-dev in ubuntu dapper.
