Описание
Security update for icu
This update for icu fixes the following issues:
- CVE-2025-5222: Stack buffer overflow in the SRBRoot:addTag function (bsc#1243721).
Список пакетов
SUSE Enterprise Storage 7.1
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
libicu60_2-60.2-150000.3.18.1
libicu60_2-bedata-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
libicu60_2-60.2-150000.3.18.1
libicu60_2-bedata-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Server 15 SP3-LTSS
libicu60_2-60.2-150000.3.18.1
libicu60_2-bedata-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Server 15 SP4-LTSS
libicu60_2-60.2-150000.3.18.1
libicu60_2-bedata-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Server 15 SP5-LTSS
libicu60_2-60.2-150000.3.18.1
libicu60_2-bedata-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise Server for SAP Applications 15 SP5
libicu60_2-60.2-150000.3.18.1
libicu60_2-ledata-60.2-150000.3.18.1
Ссылки
- Link for SUSE-SU-2025:02059-1
- E-Mail link for SUSE-SU-2025:02059-1
- SUSE Security Ratings
- SUSE Bug 1243721
- SUSE CVE CVE-2025-5222 page
Описание
A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution.
Затронутые продукты
SUSE Enterprise Storage 7.1:libicu60_2-60.2-150000.3.18.1
SUSE Enterprise Storage 7.1:libicu60_2-ledata-60.2-150000.3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libicu60_2-60.2-150000.3.18.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libicu60_2-ledata-60.2-150000.3.18.1
Ссылки
- CVE-2025-5222
- SUSE Bug 1243721