icu 52.1-3ubuntu0.2 source package in Ubuntu
Changelog
icu (52.1-3ubuntu0.2) trusty-security; urgency=medium
* SECURITY UPDATE: information disclosure via incorrect font file parsing
- debian/patches/CVE-2014-65xx.patch: add checks to
source/layout/ContextualSubstSubtables.cpp,
source/layout/CursiveAttachmentSubtables.cpp,
source/layout/Features.cpp,
source/layout/LETableReference.h,
source/layout/LigatureSubstSubtables.cpp,
source/layout/MultipleSubstSubtables.cpp.
- CVE-2014-6585
- CVE-2014-6591
* SECURITY UPDATE: denial of service or possible code execution in
regular expressions
- debian/patches/CVE-2014-7923.patch: add limits to
source/i18n/regexcmp.cpp, add test to
source/test/testdata/regextst.txt.
- CVE-2014-7923
* SECURITY UPDATE: denial of service or possible code execution in
regular expressions
- debian/patches/CVE-2014-7926.patch: fix incorrect optimization in
source/i18n/regexcmp.cpp, fix comment in source/i18n/regexcmp.h,
add test to source/test/testdata/regextst.txt.
- CVE-2014-7926
* SECURITY UPDATE: denial of service or possible code execution via
uninitialized memory in the collator implementation
- debian/patches/CVE-2014-7940.patch: properly handle memory in
source/i18n/ucol.cpp.
- CVE-2014-7940
* SECURITY UPDATE: denial of service via incorrect pattern size limits
- debian/patches/CVE-2014-9654.patch: check limits in
source/common/unicode/utypes.h, source/common/utypes.c,
source/i18n/regexcmp.cpp, source/i18n/regexcmp.h,
source/i18n/regeximp.h, added test to
source/test/intltest/regextst.cpp, source/test/intltest/regextst.h.
- CVE-2014-9654
* debian/patches/two-digit-year-test.patch: fix FTBFS caused by known
test suite failure.
-- Marc Deslauriers <email address hidden> Wed, 04 Mar 2015 11:30:28 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Trusty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| icu_52.1.orig.tar.gz | 22.8 MiB | 2f4d5e68d4698e87759dbdc1a586d053d96935787f79961d192c477b029d8092 |
| icu_52.1-3ubuntu0.2.debian.tar.gz | 31.5 KiB | 04eb31c95ea3d019db4863db4af2cae64c5a4edfde9175f1163d0674dbb4e4dc |
| icu_52.1-3ubuntu0.2.dsc | 2.0 KiB | 22e81725fd592d331de017e0cf9ca9f254b997389d07823abde90b4f93127564 |
Available diffs
Binary packages built by this source
- icu-devtools: Development utilities for International Components for Unicode
ICU is a C++ and C library that provides robust and full-featured
Unicode and locale support. This package contains programs used to
manipulate data files found in the ICU sources and is a dependency of
libicu-dev. End users would generally not need to install this package.
- icu-doc: API documentation for ICU classes and functions
ICU is a C++ and C library that provides robust and full-featured
Unicode and locale support. This package contains HTML files
documenting the ICU APIs.
- libicu-dev: Development files for International Components for Unicode
ICU is a C++ and C library that provides robust and full-featured
Unicode and locale support. This package contains the development
files for ICU.
- libicu52: International Components for Unicode
ICU is a C++ and C library that provides robust and full-featured
Unicode and locale support. This package contains the runtime
libraries for ICU.
- libicu52-dbg: International Components for Unicode
ICU is a C++ and C library that provides robust and full-featured
Unicode and locale support. This package contains debugging symbols
for the libraries.
