Showing 1 - 5 of 5

CVE-2014-8147

Status Candidate

Overview

The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text.

Related Files

Apple Security Advisory 2015-09-30-03: Posted Oct 1, 2015; Authored by Apple | Site apple.com; Apple Security Advisory 2015-09-30-03 - OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior releases.; tags | advisory, vulnerability; systems | apple, osx; advisories | CVE-2013-3951, CVE-2014-2532, CVE-2014-3618, CVE-2014-6277, CVE-2014-7186, CVE-2014-7187, CVE-2014-8080, CVE-2014-8090, CVE-2014-8146, CVE-2014-8147, CVE-2014-8611, CVE-2014-9425, CVE-2014-9427, CVE-2014-9652, CVE-2014-9705, CVE-2014-9709, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-0286, CVE-2015-0287, CVE-2015-1351, CVE-2015-1352, CVE-2015-1855, CVE-2015-2301, CVE-2015-2305, CVE-2015-2331; MD5 | 394e001ee3e97a0e28026a7e3dd1db7f; Download | Favorite | View

Debian Security Advisory 3323-1: Posted Aug 4, 2015; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3323-1 - Several vulnerabilities were discovered in the International Components for Unicode (ICU) library.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2014-6585, CVE-2014-8146, CVE-2014-8147, CVE-2015-4760; MD5 | 3b227f5b9c4afc27de34ba1dd8f7e610; Download | Favorite | View

Gentoo Linux Security Advisory 201507-04: Posted Jul 7, 2015; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201507-4 - Multiple vulnerabilities have been found in International Components for Unicode, allowing attackers to execute arbitrary code or cause a Denial of Service condition. Versions less than 55.1 are affected.; tags | advisory, denial of service, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2014-8146, CVE-2014-8147; MD5 | 134376411e97c688d7cf50dcacb15896; Download | Favorite | View

Ubuntu Security Notice USN-2605-1: Posted May 11, 2015; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2605-1 - Pedro Ribeiro discovered that ICU incorrectly handled certain memory operations when processing data. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program.; tags | advisory, arbitrary; systems | linux, ubuntu; advisories | CVE-2014-8146, CVE-2014-8147; MD5 | b06af4a4540c40c0bb44e51e1bab8a6a; Download | Favorite | View

ICU Heap / Integer Overflows: Posted May 5, 2015; Authored by Pedro Ribeiro; The ICU library suffers from heap and integer overflows. Confirmed vulnerable are versions 52 through 54.; tags | advisory, overflow; advisories | CVE-2014-8146, CVE-2014-8147; MD5 | c20f81dbe5f336d4b887a8ebb2a797f4; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 167 files
Ubuntu 65 files
LiquidWorm 14 files
Gentoo 12 files
Google Security Research 11 files
Jyotsna Adhana 8 files
Ankita Pal 7 files
Alexei Kojenov 5 files
Glazvunov 5 files
George Tsimpidas 5 files

File Archives

Systems

AIX (418)
Apple (1,742)
BSD (368)
Cisco (1,898)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (3,958)
HPUX (872)
iOS (274)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (38,682)
Mac OS X (669)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,205)
Slackware (941)
Solaris (1,593)
SUSE (1,444)
Ubuntu (6,952)
UNIX (8,760)
UnixWare (179)
Windows (5,676)
Other

CVE-2014-8147

Overview

Related Files

File Archive:

October 2020

Top Authors In Last 30 Days

File Tags

File Archives

Systems