projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4d97748) | patch
icu: add upstream security fix for utf-8 handling
authorPeter Korsgaard <peter@korsgaard.com>
Wed, 26 Apr 2017 12:57:13 +0000 (14:57 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Thu, 27 Apr 2017 12:12:16 +0000 (14:12 +0200)
commit0135204868e4888cf162755a90087b10b40093ed
tree1aef7e47a059eb80c0edb9df834113b03658b9fetree
parent4d9774812997dd51f39fc23855c8bc270bd254becommit | diff
icu: add upstream security fix for utf-8 handling

Fixes:

CVE-2017-7867 - International Components for Unicode (ICU) for C/C++ before
2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow
related to the utf8TextAccess function in common/utext.cpp and the
utext_setNativeIndex* function.

CVE-2017-7868 - International Components for Unicode (ICU) for C/C++ before
2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow
related to the utf8TextAccess function in common/utext.cpp and the
utext_moveIndex32* function.

Upstream: http://bugs.icu-project.org/trac/changeset/39671

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/icu/0006-utext-problems-with-handling-of-bad-utf8.patch [new file with mode: 0644] blob