Updated icu packages fix security vulnerabilityPublication date: 20 May 2016
Affected Mageia releases : 5
It was discovered that ICU Layout Engine was missing multiple boundary and error return checks. These could lead to buffer overflows and memory corruption. A specially crafted font file could cause an application using ICU to parse untrusted fonts to crash and, possibly, execute arbitrary code (CVE-2015-4844).