USN-2522-1

See a problem?
Source
https://ubuntu.com/security/notices/USN-2522-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2522-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-2522-1
Related
Published
2015-03-05T13:31:51.587401Z
Modified
2015-03-05T13:31:51.587401Z
Summary
icu vulnerabilities
Details

It was discovered that ICU incorrectly handled memory operations when processing fonts. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program. This issue only affected Ubuntu 12.04 LTS. (CVE-2013-1569, CVE-2013-2383, CVE-2013-2384, CVE-2013-2419)

It was discovered that ICU incorrectly handled memory operations when processing fonts. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-6585, CVE-2014-6591)

It was discovered that ICU incorrectly handled memory operations when processing regular expressions. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-7923, CVE-2014-7926, CVE-2014-9654)

It was discovered that ICU collator implementation incorrectly handled memory operations. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program. (CVE-2014-7940)

References

Affected packages

Ubuntu:14.04:LTS / icu

Package

Name
icu
Purl
pkg:deb/ubuntu/icu@52.1-3ubuntu0.2?arch=src?distro=trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
52.1-3ubuntu0.2

Affected versions

4.*

4.8.1.1-12ubuntu2
4.8.1.1-13+nmu1
4.8.1.1-13+nmu1ubuntu1

52.*

52.1-3

Ecosystem specific 

{
    "availability": "No subscription required",
    "binaries": [
        {
            "libicu52": "52.1-3ubuntu0.2",
            "icu-doc": "52.1-3ubuntu0.2",
            "libicu-dev": "52.1-3ubuntu0.2",
            "icu-devtools": "52.1-3ubuntu0.2",
            "libicu52-dbg": "52.1-3ubuntu0.2"
        }
    ]
}