Advisories ยป MGASA-2017-0411

Updated icu packages fix security vulnerability

Publication date: 16 Nov 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-14952

Description

Updated icu packages fix security vulnerability:

Double free in i18n/zonemeta.cpp in International Components for Unicode
(ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary
code via a crafted string, aka a "redundant UVector entry clean up function
call" issue (CVE-2017-14952).
                

References

SRPMS

5/core

6/core