Joined: 12 May 2004
|Posted: Mon Feb 10, 2014 11:26 am Post subject: [ GLSA 201402-14 ] International Components for Unicode: Den
|Gentoo Linux Security Advisory
Title: International Components for Unicode: Denial of Service (GLSA 201402-14)
Date: February 10, 2014
Bug(s): #460426, #486948
Two vulnerabilities in International Components for Unicode might
allow remote attackers to cause a Denial of Service condition.
International Components for Unicode is a set of C/C++ and Java
libraries providing Unicode and Globalization support for software
Vulnerable: < 51.2-r1
Unaffected: >= 51.2-r1
Architectures: All supported architectures
Multiple vulnerabilities have been discovered in International
Components for Unicode. Please review the CVE identifiers referenced
below for details.
A remote attacker could possibly cause a Denial of Service condition.
There is no known workaround at this time.
All International Components for Unicode users should upgrade to the
Packages which depend on this library may need to be recompiled. Tools
|# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-libs/icu-51.2-r1"
such as revdep-rebuild may assist in identifying some of these packages.