| Errata ID | 298 |
|---|---|
| Date | 2015-09-02 |
| Source package | icu |
| Fixed in version | 4.8.1.1-12.25.201508281703 |
| Description | Multiple security vulnerabilities have been fixed in icu: * Glyph table issue (CVE-2013-1569) * Glyph table issue (CVE-2013-2383) * Font layout issue (CVE-2013-2384) * Font processing issue (CVE-2013-2419) * Out-of-bounds read (CVE-2014-6585) * Additional out-of-bounds reads (CVE-2014-6591) * Memory corruption in regular expression comparison (CVE-2014-7923) * Memory corruption in regular expression comparison (CVE-2014-7926) * Uninitialized memory (CVE-2014-7940) * More regular expression flaws (CVE-2014-9654). * Missing boundary checks in layout engine (CVE-2015-4760) * Heap overflow via incorrect isolateCount (CVE-2014-8146) * Integer truncation in the resolveImplicitLevels function (CVE-2014-8147) |
| Additional notes | |
| CVE ID | CVE-2013-1569 CVE-2013-2383 CVE-2013-2384 CVE-2013-2419 CVE-2014-6585 CVE-2014-6591 CVE-2014-7923 CVE-2014-7926 CVE-2014-7940 CVE-2014-9654 CVE-2015-4760 CVE-2014-8146 CVE-2014-8147 |
| UCS Bug number | #37629 |
