| 0 |
| url |
VCID-1937-rk84-qydq |
| vulnerability_id |
VCID-1937-rk84-qydq |
| summary |
Use-after-free vulnerability in International Components for Unicode (ICU), as used in Google Chrome before 30.0.1599.66 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2924
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1937-rk84-qydq |
|
| 1 |
| url |
VCID-3hng-5n5z-7faw |
| vulnerability_id |
VCID-3hng-5n5z-7faw |
| summary |
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2015-4844
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3hng-5n5z-7faw |
|
| 2 |
| url |
VCID-3yjj-bp6d-tkab |
| vulnerability_id |
VCID-3yjj-bp6d-tkab |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "font processing errors" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2419
|
| risk_score |
0.2 |
| exploitability |
2.0 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3yjj-bp6d-tkab |
|
| 3 |
| url |
VCID-562t-my7q-fkhk |
| vulnerability_id |
VCID-562t-my7q-fkhk |
| summary |
The Regular Expressions package in International Components for Unicode (ICU) for C/C++ before 2014-12-03, as used in Google Chrome before 40.0.2214.91, calculates certain values without ensuring that they can be represented in a 24-bit field, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted string, a related issue to CVE-2014-7923. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-9654
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-562t-my7q-fkhk |
|
| 4 |
| url |
VCID-6grx-g6uw-yybd |
| vulnerability_id |
VCID-6grx-g6uw-yybd |
| summary |
Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u91, and 8u66 and Java SE Embedded 8u65 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2016-0494
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6grx-g6uw-yybd |
|
| 5 |
| url |
VCID-6q8q-9q3y-abhc |
| vulnerability_id |
VCID-6q8q-9q3y-abhc |
| summary |
International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2017-7868
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6q8q-9q3y-abhc |
|
| 6 |
| url |
VCID-7fz2-29gm-eufm |
| vulnerability_id |
VCID-7fz2-29gm-eufm |
| summary |
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-10531
|
| risk_score |
4.0 |
| exploitability |
0.5 |
| weighted_severity |
7.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7fz2-29gm-eufm |
|
| 7 |
| url |
VCID-8mt7-9hjj-fbfg |
| vulnerability_id |
VCID-8mt7-9hjj-fbfg |
| summary |
International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in Apple Mac OS X 10.5 before 10.5.7, iPhone OS 1.0 through 2.2.1, iPhone OS for iPod touch 1.1 through 2.2.1, Fedora 9 and 10, and possibly other operating systems, does not properly handle invalid byte sequences during Unicode conversion, which might allow remote attackers to conduct cross-site scripting (XSS) attacks. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| purl |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-bvhc-8fge-9uez |
|
| 12 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 13 |
| vulnerability |
VCID-exg8-f6tj-k7fp |
|
| 14 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 15 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 16 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 17 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 18 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 19 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 20 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 21 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 22 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 23 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 24 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 25 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 26 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 27 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 28 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 29 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 30 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 31 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.4.1-8%252Bsqueeze2 |
|
|
| aliases |
CVE-2009-0153
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8mt7-9hjj-fbfg |
|
| 8 |
| url |
VCID-8ucv-hrcz-uqau |
| vulnerability_id |
VCID-8ucv-hrcz-uqau |
| summary |
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2015-2632
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8ucv-hrcz-uqau |
|
| 9 |
|
| 10 |
| url |
VCID-aykx-vyhu-7yfr |
| vulnerability_id |
VCID-aykx-vyhu-7yfr |
| summary |
The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ does not ensure that there is a '\0' character at the end of a certain temporary array, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2016-6293
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-aykx-vyhu-7yfr |
|
| 11 |
| url |
VCID-bkbn-dxg2-dqfk |
| vulnerability_id |
VCID-bkbn-dxg2-dqfk |
| summary |
Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-6585
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bkbn-dxg2-dqfk |
|
| 12 |
| url |
VCID-bvhc-8fge-9uez |
| vulnerability_id |
VCID-bvhc-8fge-9uez |
| summary |
Race condition in the International Components for Unicode (ICU) functionality in Google Chrome before 25.0.1364.97 on Windows and Linux, and before 25.0.1364.99 on Mac OS X, allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
|
| aliases |
CVE-2013-0900
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bvhc-8fge-9uez |
|
| 13 |
| url |
VCID-excs-dj44-yfby |
| vulnerability_id |
VCID-excs-dj44-yfby |
| summary |
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a zero-length quantifier. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-7926
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-excs-dj44-yfby |
|
| 14 |
| url |
VCID-exg8-f6tj-k7fp |
| vulnerability_id |
VCID-exg8-f6tj-k7fp |
| summary |
Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
|
| aliases |
CVE-2011-4599
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-exg8-f6tj-k7fp |
|
| 15 |
| url |
VCID-f3kd-641n-17ch |
| vulnerability_id |
VCID-f3kd-641n-17ch |
| summary |
Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 2 |
|
|
| aliases |
CVE-2015-4760
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f3kd-641n-17ch |
|
| 16 |
|
| 17 |
| url |
VCID-f7v8-vz82-6ucj |
| vulnerability_id |
VCID-f7v8-vz82-6ucj |
| summary |
A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-5222
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-f7v8-vz82-6ucj |
|
| 18 |
| url |
VCID-fbng-2ww3-6bdu |
| vulnerability_id |
VCID-fbng-2ww3-6bdu |
| summary |
The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted character sequence. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-7940
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fbng-2ww3-6bdu |
|
| 19 |
| url |
VCID-fmhx-7a3k-ffdx |
| vulnerability_id |
VCID-fmhx-7a3k-ffdx |
| summary |
Stack-based buffer overflow in the ures_getByKeyWithFallback function in common/uresbund.cpp in International Components for Unicode (ICU) before 54.1 for C/C++ allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted uloc_getDisplayName call. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2014-9911
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fmhx-7a3k-ffdx |
|
| 20 |
| url |
VCID-hkbb-bc99-yqdd |
| vulnerability_id |
VCID-hkbb-bc99-yqdd |
| summary |
multiple issues |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
| 2 |
|
|
| aliases |
CVE-2017-15422
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hkbb-bc99-yqdd |
|
| 21 |
| url |
VCID-k1bn-aprc-m3ht |
| vulnerability_id |
VCID-k1bn-aprc-m3ht |
| summary |
The ucnv_io_getConverterName function in common/ucnv_io.cpp in International Components for Unicode (ICU), as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- substrings, which allows remote attackers to cause a denial of service (read of uninitialized memory) or possibly have unspecified other impact via a crafted file. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2015-1270
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k1bn-aprc-m3ht |
|
| 22 |
| url |
VCID-kauc-686u-jqeh |
| vulnerability_id |
VCID-kauc-686u-jqeh |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2384, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "handling of [a] glyph table" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2383
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kauc-686u-jqeh |
|
| 23 |
| url |
VCID-qwzq-dmn1-j7fy |
| vulnerability_id |
VCID-qwzq-dmn1-j7fy |
| summary |
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 2 |
|
|
| aliases |
CVE-2014-8147
|
| risk_score |
0.8 |
| exploitability |
2.0 |
| weighted_severity |
0.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qwzq-dmn1-j7fy |
|
| 24 |
| url |
VCID-rz8q-v7bh-9fe1 |
| vulnerability_id |
VCID-rz8q-v7bh-9fe1 |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-1569, CVE-2013-2383, and CVE-2013-2420. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "font layout" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-2384
|
| risk_score |
0.1 |
| exploitability |
0.5 |
| weighted_severity |
0.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-rz8q-v7bh-9fe1 |
|
| 25 |
| url |
VCID-scv7-4fwv-vyek |
| vulnerability_id |
VCID-scv7-4fwv-vyek |
| summary |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "checking of [a] glyph table" in the International Components for Unicode (ICU) Layout Engine before 51.2. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2013-1569
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-scv7-4fwv-vyek |
|
| 26 |
| url |
VCID-trma-c9p3-uub9 |
| vulnerability_id |
VCID-trma-c9p3-uub9 |
| summary |
The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow remote attackers to conduct cross-site scripting (XSS) attacks. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| purl |
pkg:deb/debian/icu@4.4.1-8%2Bsqueeze2 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-bvhc-8fge-9uez |
|
| 12 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 13 |
| vulnerability |
VCID-exg8-f6tj-k7fp |
|
| 14 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 15 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 16 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 17 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 18 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 19 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 20 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 21 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 22 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 23 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 24 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 25 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 26 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 27 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 28 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 29 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 30 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 31 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.4.1-8%252Bsqueeze2 |
|
|
| aliases |
CVE-2008-1036
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-trma-c9p3-uub9 |
|
| 27 |
| url |
VCID-un3w-2ee4-jbcy |
| vulnerability_id |
VCID-un3w-2ee4-jbcy |
| summary |
International Components for Unicode (ICU-20850) v66.1 was discovered to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2020-21913
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-un3w-2ee4-jbcy |
|
| 28 |
| url |
VCID-wpkr-mbq4-ekg5 |
| vulnerability_id |
VCID-wpkr-mbq4-ekg5 |
| summary |
International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2017-7867
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wpkr-mbq4-ekg5 |
|
| 29 |
| url |
VCID-wsen-t4x7-wuhc |
| vulnerability_id |
VCID-wsen-t4x7-wuhc |
| summary |
The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a look-behind expression. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-7923
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-wsen-t4x7-wuhc |
|
| 30 |
|
| 31 |
| url |
VCID-yhgb-pmpp-9uc2 |
| vulnerability_id |
VCID-yhgb-pmpp-9uc2 |
| summary |
Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8 |
| purl |
pkg:deb/debian/icu@52.1-8 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8 |
|
|
| aliases |
CVE-2014-6591
|
| risk_score |
null |
| exploitability |
0.5 |
| weighted_severity |
0.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yhgb-pmpp-9uc2 |
|
| 32 |
| url |
VCID-yzqr-kpjj-akgj |
| vulnerability_id |
VCID-yzqr-kpjj-akgj |
| summary |
Stack-based buffer overflow in the Locale class in common/locid.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long locale string. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 1 |
|
|
| aliases |
CVE-2016-7415
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-yzqr-kpjj-akgj |
|
| 33 |
| url |
VCID-zkex-ss5h-5ke5 |
| vulnerability_id |
VCID-zkex-ss5h-5ke5 |
| summary |
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text. |
| references |
|
| fixed_packages |
| 0 |
| url |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| purl |
pkg:deb/debian/icu@4.8.1.1-12%2Bdeb7u3 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-1937-rk84-qydq |
|
| 1 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 2 |
| vulnerability |
VCID-3yjj-bp6d-tkab |
|
| 3 |
| vulnerability |
VCID-562t-my7q-fkhk |
|
| 4 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 5 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 6 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 7 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 8 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 9 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 10 |
| vulnerability |
VCID-bkbn-dxg2-dqfk |
|
| 11 |
| vulnerability |
VCID-excs-dj44-yfby |
|
| 12 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 13 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 14 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 15 |
| vulnerability |
VCID-fbng-2ww3-6bdu |
|
| 16 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 17 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 18 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 19 |
| vulnerability |
VCID-kauc-686u-jqeh |
|
| 20 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 21 |
| vulnerability |
VCID-rz8q-v7bh-9fe1 |
|
| 22 |
| vulnerability |
VCID-scv7-4fwv-vyek |
|
| 23 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 24 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 25 |
| vulnerability |
VCID-wsen-t4x7-wuhc |
|
| 26 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 27 |
| vulnerability |
VCID-yhgb-pmpp-9uc2 |
|
| 28 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 29 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@4.8.1.1-12%252Bdeb7u3 |
|
| 1 |
| url |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| purl |
pkg:deb/debian/icu@52.1-8%2Bdeb8u7 |
| is_vulnerable |
true |
| affected_by_vulnerabilities |
| 0 |
| vulnerability |
VCID-3hng-5n5z-7faw |
|
| 1 |
| vulnerability |
VCID-6grx-g6uw-yybd |
|
| 2 |
| vulnerability |
VCID-6q8q-9q3y-abhc |
|
| 3 |
| vulnerability |
VCID-7fz2-29gm-eufm |
|
| 4 |
| vulnerability |
VCID-8ucv-hrcz-uqau |
|
| 5 |
| vulnerability |
VCID-9ubw-4yby-v3bp |
|
| 6 |
| vulnerability |
VCID-aykx-vyhu-7yfr |
|
| 7 |
| vulnerability |
VCID-f3kd-641n-17ch |
|
| 8 |
| vulnerability |
VCID-f3vg-25ur-57a4 |
|
| 9 |
| vulnerability |
VCID-f7v8-vz82-6ucj |
|
| 10 |
| vulnerability |
VCID-fmhx-7a3k-ffdx |
|
| 11 |
| vulnerability |
VCID-hkbb-bc99-yqdd |
|
| 12 |
| vulnerability |
VCID-k1bn-aprc-m3ht |
|
| 13 |
| vulnerability |
VCID-qwzq-dmn1-j7fy |
|
| 14 |
| vulnerability |
VCID-un3w-2ee4-jbcy |
|
| 15 |
| vulnerability |
VCID-wpkr-mbq4-ekg5 |
|
| 16 |
| vulnerability |
VCID-xdhx-y4jj-xfeu |
|
| 17 |
| vulnerability |
VCID-yzqr-kpjj-akgj |
|
| 18 |
| vulnerability |
VCID-zkex-ss5h-5ke5 |
|
|
| resource_url |
http://public2.vulnerablecode.io/packages/pkg:deb/debian/icu@52.1-8%252Bdeb8u7 |
|
| 2 |
|
|
| aliases |
CVE-2014-8146
|
| risk_score |
0.4 |
| exploitability |
2.0 |
| weighted_severity |
0.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zkex-ss5h-5ke5 |
|