Advisories ยป MGASA-2015-0102

Updated icu packages fix security vulnerability

Publication date: 10 Mar 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-6585 , CVE-2014-6591

Description

It was discovered that ICU incorrectly handled memory operations when
processing fonts. If an application using ICU processed crafted data, an
attacker could cause it to crash or potentially execute arbitrary code with
the privileges of the user invoking the program (CVE-2014-6585,
CVE-2014-6591).
                

References

SRPMS

4/core