CVE-2017-14952
N/A
N/A
Summary
Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/
- http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
References
- http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/
- http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.