Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

Ubuntu 17.04 Security Notice USN-3274-1 Critical ICU Memory Issues

ubuntu
Calendar Grey May 2, 2017
Dist Ubuntu Esm H88
Ubuntu's USN-3274-2 tackles various security weaknesses in ICU, impacting different versions.
Several security issues were fixed in ICU.

Summary

Several security issues were fixed in ICU.

Software Description:

- icu: International Components for Unicode library

Details:

It was discovered that ICU incorrectly handled certain memory operations

when processing data. If an application using ICU processed crafted data,

a remote attacker could possibly cause it to crash or potentially execute

arbitrary code with the privileges of the user invoking the program.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
  libicu57                        57.1-5ubuntu0.1

Ubuntu 16.10:
  libicu57                        57.1-4ubuntu0.2

Ubuntu 16.04 LTS:
  libicu55                        55.1-7ubuntu0.2

Ubuntu 14.04 LTS:
  libicu52                        52.1-3ubuntu0.6

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-3274-1

CVE-2017-7867, CVE-2017-7868

Severity
critical
Lowest
Low
Medium
High
Critical

May 02, 2017

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.