USN-3458-2: ICU vulnerability
23 October 2017
ICU could be made to crash or run arbitrary code as your login if it received specially crafted input.
- icu - International Components for Unicode library
USN-3458-1 fixed a vulnerability in ICU. This update
provides the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
It was discovered that ICU incorrectly handled certain inputs. If an
application using ICU processed crafted data, a remote attacker could
possibly cause it to crash or potentially execute arbitrary code with
the privileges of the user invoking the program.
- USN-3458-1: icu, libicu55, icu-doc, libicu57, libicu-dev, icu-devtools, libicu52