Описание
ELSA-2009-1122: icu security update (MODERATE)
[3.6-5.11.4]
- Resolves: rhbz#505159 CVE-2009-0153 guarantee abi
[3.6-5.11.3]
- Resolves: rhbz#505159 CVE-2009-0153
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
icu
3.6-5.11.4
libicu
3.6-5.11.4
libicu-devel
3.6-5.11.4
libicu-doc
3.6-5.11.4
Oracle Linux x86_64
icu
3.6-5.11.4
libicu
3.6-5.11.4
libicu-devel
3.6-5.11.4
libicu-doc
3.6-5.11.4
Oracle Linux i386
icu
3.6-5.11.4
libicu
3.6-5.11.4
libicu-devel
3.6-5.11.4
libicu-doc
3.6-5.11.4
Связанные CVE
Связанные уязвимости
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x ver ...
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.