icu-4.2.1-15.AXS4

Release date:

Wednesday, March 18, 2020 - 16:55

Subject:

icu-4.2.1-15.AXS4

Affected Channels:

Asianux Server 4 for x86_64

Asianux Server 4 for x86

Severity:

High

Description:

The International Components for Unicode (ICU) library provides robust and full-featured Unicode services.

Security Fix(es):

* ICU: Integer overflow in UnicodeString::doAppend() (CVE-2020-10531)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-10531
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.

Solution:

Update packages.

CVEs:

CVE-2020-10531
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.

Additional Info:

N/A

Download:

SRPMS

icu-4.2.1-15.AXS4.src.rpm
MD5: f24cf5f4626752a89ea8a345b1788e0f
SHA-256: d832e1e8b195301119850d880e27f564dd69690a1eca99729bc4723c1e94a26d
Size: 11.71 MB

Asianux Server 4 for x86

libicu-4.2.1-15.AXS4.i686.rpm
MD5: 375d47d7b9681822db37c35a66288b2f
SHA-256: fe526f15f409cf4e48f2ae807894c047ae3154434037c9c8113993fc8933d0f8
Size: 4.97 MB

Asianux Server 4 for x86_64

libicu-4.2.1-15.AXS4.x86_64.rpm
MD5: 25e6055a4c7bd260df273086c160f3c5
SHA-256: 1a26ab8a030d6093a46dce8c8902c4a27704e3210cbf3434cf61e834530cbd47
Size: 4.92 MB
libicu-devel-4.2.1-15.AXS4.x86_64.rpm
MD5: b4fdba81402d58369439864982692271
SHA-256: 93907f0047b505e689ed44cfb672bd04a6a1e0480931ddb856701a716e47c775
Size: 616.34 kB
libicu-4.2.1-15.AXS4.i686.rpm
MD5: 375d47d7b9681822db37c35a66288b2f
SHA-256: fe526f15f409cf4e48f2ae807894c047ae3154434037c9c8113993fc8933d0f8
Size: 4.97 MB

Main menu

You are here