icu 3.4.1a-1ubuntu1.6.06.1 source package in Ubuntu
Changelog
icu (3.4.1a-1ubuntu1.6.06.1) dapper-security; urgency=low * SECURITY UPDATE: possible read from and write to out of bounds memory locations via back reference '\0' in regular expressions * SECURITY UPDATE: denial of service due to memory exhaustion via a crafted regular expression * debian/patches/SECURITY_CVE-2007-4770_4771.patch: fix regexcmp.cpp to return error on invalid back reference. fix rematch.cpp, uvectr32.h and uvectr32.cpp to return error when capacity is greater than maxCapacity * References CVE-2007-4770 CVE-2007-4771 -- Jamie Strandboge <email address hidden> Thu, 20 Mar 2008 14:31:40 -0400
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Dapper
- Original maintainer:
- Jay Berkenbilt
- Architectures:
- any
- Section:
- libs
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
icu_3.4.1a.orig.tar.gz | 8.6 MiB | e59631d0589cae0131b32aacc3d25b3bb10e3e664c62e40ca7f98933fe7fbb6e |
icu_3.4.1a-1ubuntu1.6.06.1.diff.gz | 10.7 KiB | 834670379eb1cb949c1736da984dc0540f978b01d38a8a6dff9c025bc8353baa |
icu_3.4.1a-1ubuntu1.6.06.1.dsc | 619 bytes | f71ad5ef52dff1d9885ae0f1ec399cc23f082edc1e5ce37670010b76f656a214 |
Binary packages built by this source
- icu-doc: No summary available for icu-doc in ubuntu dapper.
No description available for icu-doc in ubuntu dapper.
- libicu34: No summary available for libicu34 in ubuntu dapper.
No description available for libicu34 in ubuntu dapper.
- libicu34-dev: No summary available for libicu34-dev in ubuntu dapper.
No description available for libicu34-dev in ubuntu dapper.