CVE-2016-7415

Published: 17 September 2016

Stack-based buffer overflow in the Locale class in common/locid.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long locale string.

Priority

Medium

CVSS 3 base score: 9.8

Status

Package Release Status
icu
Launchpad, Ubuntu, Debian
Upstream
Released (57.1-5)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (55.1-7ubuntu0.1)
Ubuntu 14.04 ESM (Trusty Tahr)
Released (52.1-3ubuntu0.5)