Showing 1 - 5 of 5

CVE-2014-8147

Status Candidate

Overview

The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text.

Related Files

Apple Security Advisory 2015-09-30-03: Posted Oct 1, 2015; Authored by Apple | Site apple.com; Apple Security Advisory 2015-09-30-03 - OS X El Capitan 10.11 is now available and addresses close to 100 vulnerabilities that may exist in prior releases.; tags | advisory, vulnerability; systems | apple, osx; advisories | CVE-2013-3951, CVE-2014-2532, CVE-2014-3618, CVE-2014-6277, CVE-2014-7186, CVE-2014-7187, CVE-2014-8080, CVE-2014-8090, CVE-2014-8146, CVE-2014-8147, CVE-2014-8611, CVE-2014-9425, CVE-2014-9427, CVE-2014-9652, CVE-2014-9705, CVE-2014-9709, CVE-2015-0231, CVE-2015-0232, CVE-2015-0235, CVE-2015-0273, CVE-2015-0286, CVE-2015-0287, CVE-2015-1351, CVE-2015-1352, CVE-2015-1855, CVE-2015-2301, CVE-2015-2305, CVE-2015-2331; MD5 | 394e001ee3e97a0e28026a7e3dd1db7f; Download | Favorite | View

Debian Security Advisory 3323-1: Posted Aug 4, 2015; Authored by Debian | Site debian.org; Debian Linux Security Advisory 3323-1 - Several vulnerabilities were discovered in the International Components for Unicode (ICU) library.; tags | advisory, vulnerability; systems | linux, debian; advisories | CVE-2014-6585, CVE-2014-8146, CVE-2014-8147, CVE-2015-4760; MD5 | 3b227f5b9c4afc27de34ba1dd8f7e610; Download | Favorite | View

Gentoo Linux Security Advisory 201507-04: Posted Jul 7, 2015; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201507-4 - Multiple vulnerabilities have been found in International Components for Unicode, allowing attackers to execute arbitrary code or cause a Denial of Service condition. Versions less than 55.1 are affected.; tags | advisory, denial of service, arbitrary, vulnerability; systems | linux, gentoo; advisories | CVE-2014-8146, CVE-2014-8147; MD5 | 134376411e97c688d7cf50dcacb15896; Download | Favorite | View

Ubuntu Security Notice USN-2605-1: Posted May 11, 2015; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 2605-1 - Pedro Ribeiro discovered that ICU incorrectly handled certain memory operations when processing data. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program.; tags | advisory, arbitrary; systems | linux, ubuntu; advisories | CVE-2014-8146, CVE-2014-8147; MD5 | b06af4a4540c40c0bb44e51e1bab8a6a; Download | Favorite | View

ICU Heap / Integer Overflows: Posted May 5, 2015; Authored by Pedro Ribeiro; The ICU library suffers from heap and integer overflows. Confirmed vulnerable are versions 52 through 54.; tags | advisory, overflow; advisories | CVE-2014-8146, CVE-2014-8147; MD5 | c20f81dbe5f336d4b887a8ebb2a797f4; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 95 files
malvuln 40 files
Ubuntu 33 files
LiquidWorm 18 files
Richard Jones 16 files
thc 6 files
th3d1gger 5 files
Brian Rodriguez 4 files
Gentoo 4 files
wvu 4 files

File Archives

Systems

AIX (421)
Apple (1,781)
BSD (368)
Cisco (1,903)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (4,044)
HPUX (873)
iOS (288)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (39,680)
Mac OS X (673)
Mandriva (3,105)
NetBSD (255)
OpenBSD (473)
RedHat (9,851)
Slackware (941)
Solaris (1,598)
SUSE (1,444)
Ubuntu (7,184)
UNIX (8,869)
UnixWare (180)
Windows (5,886)
Other

CVE-2014-8147

Overview

Related Files

File Archive:

April 2021

Top Authors In Last 30 Days

File Tags

File Archives

Systems