Описание
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-4770
- https://bugzilla.redhat.com/show_bug.cgi?id=429023
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39938
- https://issues.rpath.com/browse/RPL-2199
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11172
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5507
- https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00896.html
- https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00921.html
- http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html
- http://rhn.redhat.com/errata/RHSA-2008-0090.html
- http://secunia.com/advisories/28575
- http://secunia.com/advisories/28615
- http://secunia.com/advisories/28669
- http://secunia.com/advisories/28783
- http://secunia.com/advisories/29194
- http://secunia.com/advisories/29242
- http://secunia.com/advisories/29291
- http://secunia.com/advisories/29294
- http://secunia.com/advisories/29333
- http://secunia.com/advisories/29852
- http://secunia.com/advisories/29910
- http://secunia.com/advisories/29987
- http://secunia.com/advisories/30179
- http://security.gentoo.org/glsa/glsa-200803-20.xml
- http://security.gentoo.org/glsa/glsa-200805-16.xml
- http://securitytracker.com/id?1019269
- http://sourceforge.net/mailarchive/message.php?msg_name=d03a2ffb0801221538x68825e42xb4a4aaf0fcccecbd%40mail.gmail.com
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-231641-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-233922-1
- http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0043
- http://www.debian.org/security/2008/dsa-1511
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:026
- http://www.novell.com/linux/security/advisories/2008_23_openoffice.html
- http://www.openoffice.org/security/cves/CVE-2007-4770.html
- http://www.openoffice.org/security/cves/CVE-2007-5745.html
- http://www.securityfocus.com/archive/1/487677/100/0/threaded
- http://www.securityfocus.com/bid/27455
- http://www.ubuntu.com/usn/usn-591-1
- http://www.vupen.com/english/advisories/2008/0282
- http://www.vupen.com/english/advisories/2008/0807/references
- http://www.vupen.com/english/advisories/2008/1375/references
EPSS
CVE ID
Связанные уязвимости
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
libicu in International Components for Unicode (ICU) 3.8.1 and earlier ...
ELSA-2008-0090: Important: icu security update (IMPORTANT)
EPSS