Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2017-14952 (GCVE-0-2017-14952)
Vulnerability from cvelistv5
- n/a
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-05T19:42:22.293Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2017-08-09T00:00:00", "descriptions": [ { "lang": "en", "value": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2019-04-23T19:08:15", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre" }, "references": [ { "tags": [ "x_refsource_MISC" ], "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "tags": [ "x_refsource_MISC" ], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-14952", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/", "refsource": "MISC", "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "name": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp", "refsource": "CONFIRM", "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "refsource": "MISC", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" } ] } } } }, "cveMetadata": { "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-14952", "datePublished": "2017-10-16T16:00:00", "dateReserved": "2017-09-29T00:00:00", "dateUpdated": "2024-08-05T19:42:22.293Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2017-14952\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-10-16T16:29:00.887\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \\\"redundant UVector entry clean up function call\\\" issue.\"},{\"lang\":\"es\",\"value\":\"Doble liberaci\u00f3n (double free) en i18n/zonemeta.cpp en International Components for Unicode (ICU) para C/C++ hasta la versi\u00f3n 59.1 permite que atacantes remotos ejecuten c\u00f3digo arbitrario mediante una cadena manipulada. Esto tambi\u00e9n se conoce como \\\"redundant UVector entry clean up function call\\\".\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-415\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:icu-project:international_components_for_unicode:*:*:*:*:*:c\\\\/c\\\\+\\\\+:*:*\",\"versionEndIncluding\":\"59.1\",\"matchCriteriaId\":\"D014CA1A-E812-43A8-BA9B-4CEBD3D57109\"}]}]}],\"references\":[{\"url\":\"http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
suse-su-2018:1401-2
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for icu", "title": "Title of the patch" }, { "category": "description", "text": "icu was updated to fix two security issues.\n\nThese security issues were fixed:\n- CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c\n in the Unicode Bidirectional Algorithm implementation in ICU4C in\n International Components for Unicode (ICU) used an integer data type\n that is inconsistent with a header file, which allowed remote attackers\n to cause a denial of service (incorrect malloc followed by invalid free)\n or possibly execute arbitrary code via crafted text (bsc#929629).\n- CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c\n in the Unicode Bidirectional Algorithm implementation in ICU4C in\n International Components for Unicode (ICU) did not properly track\n directionally isolated pieces of text, which allowed remote attackers\n to cause a denial of service (heap-based buffer overflow) or possibly\n execute arbitrary code via crafted text (bsc#929629).\n- CVE-2016-6293: The uloc_acceptLanguageFromHTTP function in\n common/uloc.cpp in International Components for Unicode (ICU) for C/C++\n did not ensure that there is a \u0027\\0\u0027 character at the end of a certain\n temporary array, which allowed remote attackers to cause a denial of\n service (out-of-bounds read) or possibly have unspecified other impact\n via a call with a long httpAcceptLanguage argument (bsc#990636).\n- CVE-2017-7868: International Components for Unicode (ICU) for C/C++\n 2017-02-13 has an out-of-bounds write caused by a heap-based buffer\n overflow related to the utf8TextAccess function in common/utext.cpp and\n the utext_moveIndex32* function (bsc#1034674)\n- CVE-2017-7867: International Components for Unicode (ICU) for C/C++\n 2017-02-13 has an out-of-bounds write caused by a heap-based buffer\n overflow related to the utf8TextAccess function in common/utext.cpp and\n the utext_setNativeIndex* function (bsc#1034678)\n- CVE-2017-14952: Double free in i18n/zonemeta.cpp in International\n Components for Unicode (ICU) for C/C++ allowed remote attackers to\n execute arbitrary code via a crafted string, aka a \u0027redundant UVector\n entry clean up function call\u0027 issue (bnc#1067203)\n- CVE-2017-17484: The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp\n in International Components for Unicode (ICU) for C/C++ mishandled\n ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allowed remote\n attackers to cause a denial of service (stack-based buffer overflow\n and application crash) or possibly have unspecified other impact via a\n crafted string, as demonstrated by ZNC (bnc#1072193)\n- CVE-2017-15422: An integer overflow in icu during persian calendar\n date processing could lead to incorrect years shown (bnc#1077999)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-SLE-SERVER-12-SP2-BCL-2018-979", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_1401-2.json" }, { "category": "self", "summary": "URL for SUSE-SU-2018:1401-2", "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20181401-2/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2018:1401-2", "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-October/004696.html" }, { "category": "self", "summary": "SUSE Bug 1034674", "url": "https://bugzilla.suse.com/1034674" }, { "category": "self", "summary": "SUSE Bug 1034678", "url": "https://bugzilla.suse.com/1034678" }, { "category": "self", "summary": "SUSE Bug 1067203", "url": "https://bugzilla.suse.com/1067203" }, { "category": "self", "summary": "SUSE Bug 1072193", "url": "https://bugzilla.suse.com/1072193" }, { "category": "self", "summary": "SUSE Bug 1077999", "url": "https://bugzilla.suse.com/1077999" }, { "category": "self", "summary": "SUSE Bug 1087932", "url": "https://bugzilla.suse.com/1087932" }, { "category": "self", "summary": "SUSE Bug 929629", "url": "https://bugzilla.suse.com/929629" }, { "category": "self", "summary": "SUSE Bug 990636", "url": "https://bugzilla.suse.com/990636" }, { "category": "self", "summary": "SUSE CVE CVE-2014-8146 page", "url": "https://www.suse.com/security/cve/CVE-2014-8146/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-8147 page", "url": "https://www.suse.com/security/cve/CVE-2014-8147/" }, { "category": "self", "summary": "SUSE CVE CVE-2016-6293 page", "url": "https://www.suse.com/security/cve/CVE-2016-6293/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-14952 page", "url": "https://www.suse.com/security/cve/CVE-2017-14952/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-15422 page", "url": "https://www.suse.com/security/cve/CVE-2017-15422/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-17484 page", "url": "https://www.suse.com/security/cve/CVE-2017-17484/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-7867 page", "url": "https://www.suse.com/security/cve/CVE-2017-7867/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-7868 page", "url": "https://www.suse.com/security/cve/CVE-2017-7868/" } ], "title": "Security update for icu", "tracking": { "current_release_date": "2018-10-18T12:43:53Z", "generator": { "date": "2018-10-18T12:43:53Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2018:1401-2", "initial_release_date": "2018-10-18T12:43:53Z", "revision_history": [ { "date": "2018-10-18T12:43:53Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "libicu-doc-52.1-8.7.1.x86_64", "product": { "name": "libicu-doc-52.1-8.7.1.x86_64", "product_id": "libicu-doc-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu52_1-52.1-8.7.1.x86_64", "product": { "name": "libicu52_1-52.1-8.7.1.x86_64", "product_id": "libicu52_1-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu52_1-32bit-52.1-8.7.1.x86_64", "product": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64", "product_id": "libicu52_1-32bit-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu52_1-data-52.1-8.7.1.x86_64", "product": { "name": "libicu52_1-data-52.1-8.7.1.x86_64", "product_id": "libicu52_1-data-52.1-8.7.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP2-BCL", "product": { "name": "SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-bcl:12:sp2" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL", "product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL" } ] }, "vulnerabilities": [ { "cve": "CVE-2014-8146", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-8146" } ], "notes": [ { "category": "general", "text": "The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-8146", "url": "https://www.suse.com/security/cve/CVE-2014-8146" }, { "category": "external", "summary": "SUSE Bug 1066493 for CVE-2014-8146", "url": "https://bugzilla.suse.com/1066493" }, { "category": "external", "summary": "SUSE Bug 910805 for CVE-2014-8146", "url": "https://bugzilla.suse.com/910805" }, { "category": "external", "summary": "SUSE Bug 927951 for CVE-2014-8146", "url": "https://bugzilla.suse.com/927951" }, { "category": "external", "summary": "SUSE Bug 929629 for CVE-2014-8146", "url": "https://bugzilla.suse.com/929629" }, { "category": "external", "summary": "SUSE Bug 959178 for CVE-2014-8146", "url": "https://bugzilla.suse.com/959178" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "important" } ], "title": "CVE-2014-8146" }, { "cve": "CVE-2014-8147", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-8147" } ], "notes": [ { "category": "general", "text": "The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-8147", "url": "https://www.suse.com/security/cve/CVE-2014-8147" }, { "category": "external", "summary": "SUSE Bug 1066493 for CVE-2014-8147", "url": "https://bugzilla.suse.com/1066493" }, { "category": "external", "summary": "SUSE Bug 1079317 for CVE-2014-8147", "url": "https://bugzilla.suse.com/1079317" }, { "category": "external", "summary": "SUSE Bug 910805 for CVE-2014-8147", "url": "https://bugzilla.suse.com/910805" }, { "category": "external", "summary": "SUSE Bug 910806 for CVE-2014-8147", "url": "https://bugzilla.suse.com/910806" }, { "category": "external", "summary": "SUSE Bug 927951 for CVE-2014-8147", "url": "https://bugzilla.suse.com/927951" }, { "category": "external", "summary": "SUSE Bug 929629 for CVE-2014-8147", "url": "https://bugzilla.suse.com/929629" }, { "category": "external", "summary": "SUSE Bug 959178 for CVE-2014-8147", "url": "https://bugzilla.suse.com/959178" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "important" } ], "title": "CVE-2014-8147" }, { "cve": "CVE-2016-6293", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2016-6293" } ], "notes": [ { "category": "general", "text": "The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ does not ensure that there is a \u0027\\0\u0027 character at the end of a certain temporary array, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2016-6293", "url": "https://www.suse.com/security/cve/CVE-2016-6293" }, { "category": "external", "summary": "SUSE Bug 1035111 for CVE-2016-6293", "url": "https://bugzilla.suse.com/1035111" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2016-6293", "url": "https://bugzilla.suse.com/1123121" }, { "category": "external", "summary": "SUSE Bug 990636 for CVE-2016-6293", "url": "https://bugzilla.suse.com/990636" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "moderate" } ], "title": "CVE-2016-6293" }, { "cve": "CVE-2017-14952", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-14952" } ], "notes": [ { "category": "general", "text": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-14952", "url": "https://www.suse.com/security/cve/CVE-2017-14952" }, { "category": "external", "summary": "SUSE Bug 1067203 for CVE-2017-14952", "url": "https://bugzilla.suse.com/1067203" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-14952", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "moderate" } ], "title": "CVE-2017-14952" }, { "cve": "CVE-2017-15422", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-15422" } ], "notes": [ { "category": "general", "text": "Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-15422", "url": "https://www.suse.com/security/cve/CVE-2017-15422" }, { "category": "external", "summary": "SUSE Bug 1071691 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1071691" }, { "category": "external", "summary": "SUSE Bug 1077999 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1077999" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "moderate" } ], "title": "CVE-2017-15422" }, { "cve": "CVE-2017-17484", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-17484" } ], "notes": [ { "category": "general", "text": "The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International Components for Unicode (ICU) for C/C++ through 60.1 mishandles ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted string, as demonstrated by ZNC.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-17484", "url": "https://www.suse.com/security/cve/CVE-2017-17484" }, { "category": "external", "summary": "SUSE Bug 1072193 for CVE-2017-17484", "url": "https://bugzilla.suse.com/1072193" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-17484", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "moderate" } ], "title": "CVE-2017-17484" }, { "cve": "CVE-2017-7867", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-7867" } ], "notes": [ { "category": "general", "text": "International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-7867", "url": "https://www.suse.com/security/cve/CVE-2017-7867" }, { "category": "external", "summary": "SUSE Bug 1034678 for CVE-2017-7867", "url": "https://bugzilla.suse.com/1034678" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-7867", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "important" } ], "title": "CVE-2017-7867" }, { "cve": "CVE-2017-7868", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-7868" } ], "notes": [ { "category": "general", "text": "International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-7868", "url": "https://www.suse.com/security/cve/CVE-2017-7868" }, { "category": "external", "summary": "SUSE Bug 1034674 for CVE-2017-7868", "url": "https://bugzilla.suse.com/1034674" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-7868", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 12 SP2-BCL:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-BCL:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-10-18T12:43:53Z", "details": "important" } ], "title": "CVE-2017-7868" } ] }
suse-su-2018:1401-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for icu", "title": "Title of the patch" }, { "category": "description", "text": "icu was updated to fix two security issues.\n\nThese security issues were fixed:\n- CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c\n in the Unicode Bidirectional Algorithm implementation in ICU4C in\n International Components for Unicode (ICU) used an integer data type\n that is inconsistent with a header file, which allowed remote attackers\n to cause a denial of service (incorrect malloc followed by invalid free)\n or possibly execute arbitrary code via crafted text (bsc#929629).\n- CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c\n in the Unicode Bidirectional Algorithm implementation in ICU4C in\n International Components for Unicode (ICU) did not properly track\n directionally isolated pieces of text, which allowed remote attackers\n to cause a denial of service (heap-based buffer overflow) or possibly\n execute arbitrary code via crafted text (bsc#929629).\n- CVE-2016-6293: The uloc_acceptLanguageFromHTTP function in\n common/uloc.cpp in International Components for Unicode (ICU) for C/C++\n did not ensure that there is a \u0027\\0\u0027 character at the end of a certain\n temporary array, which allowed remote attackers to cause a denial of\n service (out-of-bounds read) or possibly have unspecified other impact\n via a call with a long httpAcceptLanguage argument (bsc#990636).\n- CVE-2017-7868: International Components for Unicode (ICU) for C/C++\n 2017-02-13 has an out-of-bounds write caused by a heap-based buffer\n overflow related to the utf8TextAccess function in common/utext.cpp and\n the utext_moveIndex32* function (bsc#1034674)\n- CVE-2017-7867: International Components for Unicode (ICU) for C/C++\n 2017-02-13 has an out-of-bounds write caused by a heap-based buffer\n overflow related to the utf8TextAccess function in common/utext.cpp and\n the utext_setNativeIndex* function (bsc#1034678)\n- CVE-2017-14952: Double free in i18n/zonemeta.cpp in International\n Components for Unicode (ICU) for C/C++ allowed remote attackers to\n execute arbitrary code via a crafted string, aka a \u0027redundant UVector\n entry clean up function call\u0027 issue (bnc#1067203)\n- CVE-2017-17484: The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp\n in International Components for Unicode (ICU) for C/C++ mishandled\n ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allowed remote\n attackers to cause a denial of service (stack-based buffer overflow\n and application crash) or possibly have unspecified other impact via a\n crafted string, as demonstrated by ZNC (bnc#1072193)\n- CVE-2017-15422: An integer overflow in icu during persian calendar\n date processing could lead to incorrect years shown (bnc#1077999)\n\n", "title": "Description of the patch" }, { "category": "details", "text": "SUSE-OpenStack-Cloud-7-2018-979,SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2018-979,SUSE-SLE-DESKTOP-12-SP3-2018-979,SUSE-SLE-SAP-12-SP1-2018-979,SUSE-SLE-SAP-12-SP2-2018-979,SUSE-SLE-SDK-12-SP3-2018-979,SUSE-SLE-SERVER-12-2018-979,SUSE-SLE-SERVER-12-SP1-2018-979,SUSE-SLE-SERVER-12-SP2-2018-979,SUSE-SLE-SERVER-12-SP3-2018-979,SUSE-SLE-WE-12-SP3-2018-979,SUSE-Storage-4-2018-979", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_1401-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2018:1401-1", "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20181401-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2018:1401-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-May/004085.html" }, { "category": "self", "summary": "SUSE Bug 1034674", "url": "https://bugzilla.suse.com/1034674" }, { "category": "self", "summary": "SUSE Bug 1034678", "url": "https://bugzilla.suse.com/1034678" }, { "category": "self", "summary": "SUSE Bug 1067203", "url": "https://bugzilla.suse.com/1067203" }, { "category": "self", "summary": "SUSE Bug 1072193", "url": "https://bugzilla.suse.com/1072193" }, { "category": "self", "summary": "SUSE Bug 1077999", "url": "https://bugzilla.suse.com/1077999" }, { "category": "self", "summary": "SUSE Bug 1087932", "url": "https://bugzilla.suse.com/1087932" }, { "category": "self", "summary": "SUSE Bug 929629", "url": "https://bugzilla.suse.com/929629" }, { "category": "self", "summary": "SUSE Bug 990636", "url": "https://bugzilla.suse.com/990636" }, { "category": "self", "summary": "SUSE CVE CVE-2014-8146 page", "url": "https://www.suse.com/security/cve/CVE-2014-8146/" }, { "category": "self", "summary": "SUSE CVE CVE-2014-8147 page", "url": "https://www.suse.com/security/cve/CVE-2014-8147/" }, { "category": "self", "summary": "SUSE CVE CVE-2016-6293 page", "url": "https://www.suse.com/security/cve/CVE-2016-6293/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-14952 page", "url": "https://www.suse.com/security/cve/CVE-2017-14952/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-15422 page", "url": "https://www.suse.com/security/cve/CVE-2017-15422/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-17484 page", "url": "https://www.suse.com/security/cve/CVE-2017-17484/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-7867 page", "url": "https://www.suse.com/security/cve/CVE-2017-7867/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-7868 page", "url": "https://www.suse.com/security/cve/CVE-2017-7868/" } ], "title": "Security update for icu", "tracking": { "current_release_date": "2018-05-23T17:53:04Z", "generator": { "date": "2018-05-23T17:53:04Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2018:1401-1", "initial_release_date": "2018-05-23T17:53:04Z", "revision_history": [ { "date": "2018-05-23T17:53:04Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "libicu-devel-52.1-8.7.1.aarch64", "product": { "name": "libicu-devel-52.1-8.7.1.aarch64", "product_id": "libicu-devel-52.1-8.7.1.aarch64" } }, { "category": "product_version", "name": "libicu-doc-52.1-8.7.1.aarch64", "product": { "name": "libicu-doc-52.1-8.7.1.aarch64", "product_id": "libicu-doc-52.1-8.7.1.aarch64" } }, { "category": "product_version", "name": "libicu52_1-52.1-8.7.1.aarch64", "product": { "name": "libicu52_1-52.1-8.7.1.aarch64", "product_id": "libicu52_1-52.1-8.7.1.aarch64" } }, { "category": "product_version", "name": "libicu52_1-data-52.1-8.7.1.aarch64", "product": { "name": "libicu52_1-data-52.1-8.7.1.aarch64", "product_id": "libicu52_1-data-52.1-8.7.1.aarch64" } } ], "category": "architecture", "name": "aarch64" }, { "branches": [ { "category": "product_version", "name": "libicu-doc-52.1-8.7.1.ppc64le", "product": { "name": "libicu-doc-52.1-8.7.1.ppc64le", "product_id": "libicu-doc-52.1-8.7.1.ppc64le" } }, { "category": "product_version", "name": "libicu52_1-52.1-8.7.1.ppc64le", "product": { "name": "libicu52_1-52.1-8.7.1.ppc64le", "product_id": "libicu52_1-52.1-8.7.1.ppc64le" } }, { "category": "product_version", "name": "libicu52_1-data-52.1-8.7.1.ppc64le", "product": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le", "product_id": "libicu52_1-data-52.1-8.7.1.ppc64le" } }, { "category": "product_version", "name": "libicu-devel-52.1-8.7.1.ppc64le", "product": { "name": "libicu-devel-52.1-8.7.1.ppc64le", "product_id": "libicu-devel-52.1-8.7.1.ppc64le" } } ], "category": "architecture", "name": "ppc64le" }, { "branches": [ { "category": "product_version", "name": "libicu-doc-52.1-8.7.1.s390x", "product": { "name": "libicu-doc-52.1-8.7.1.s390x", "product_id": "libicu-doc-52.1-8.7.1.s390x" } }, { "category": "product_version", "name": "libicu52_1-52.1-8.7.1.s390x", "product": { "name": "libicu52_1-52.1-8.7.1.s390x", "product_id": "libicu52_1-52.1-8.7.1.s390x" } }, { "category": "product_version", "name": "libicu52_1-32bit-52.1-8.7.1.s390x", "product": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x", "product_id": "libicu52_1-32bit-52.1-8.7.1.s390x" } }, { "category": "product_version", "name": "libicu52_1-data-52.1-8.7.1.s390x", "product": { "name": "libicu52_1-data-52.1-8.7.1.s390x", "product_id": "libicu52_1-data-52.1-8.7.1.s390x" } }, { "category": "product_version", "name": "libicu-devel-52.1-8.7.1.s390x", "product": { "name": "libicu-devel-52.1-8.7.1.s390x", "product_id": "libicu-devel-52.1-8.7.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "libicu-doc-52.1-8.7.1.x86_64", "product": { "name": "libicu-doc-52.1-8.7.1.x86_64", "product_id": "libicu-doc-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu52_1-52.1-8.7.1.x86_64", "product": { "name": "libicu52_1-52.1-8.7.1.x86_64", "product_id": "libicu52_1-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu52_1-32bit-52.1-8.7.1.x86_64", "product": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64", "product_id": "libicu52_1-32bit-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu52_1-data-52.1-8.7.1.x86_64", "product": { "name": "libicu52_1-data-52.1-8.7.1.x86_64", "product_id": "libicu52_1-data-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "icu-52.1-8.7.1.x86_64", "product": { "name": "icu-52.1-8.7.1.x86_64", "product_id": "icu-52.1-8.7.1.x86_64" } }, { "category": "product_version", "name": "libicu-devel-52.1-8.7.1.x86_64", "product": { "name": "libicu-devel-52.1-8.7.1.x86_64", "product_id": "libicu-devel-52.1-8.7.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE OpenStack Cloud 7", "product": { "name": "SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7", "product_identification_helper": { "cpe": "cpe:/o:suse:suse-openstack-cloud:7" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Desktop 12 SP3", "product": { "name": "SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sled:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp1" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp2" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Software Development Kit 12 SP3", "product": { "name": "SUSE Linux Enterprise Software Development Kit 12 SP3", "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sle-sdk:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12-LTSS", "product": { "name": "SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:12" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP1-LTSS", "product": { "name": "SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:12:sp1" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP2-LTSS", "product": { "name": "SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS", "product_identification_helper": { "cpe": "cpe:/o:suse:sles-ltss:12:sp2" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 12 SP3", "product": { "name": "SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sles:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:12:sp3" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Workstation Extension 12 SP3", "product": { "name": "SUSE Linux Enterprise Workstation Extension 12 SP3", "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3", "product_identification_helper": { "cpe": "cpe:/o:suse:sle-we:12:sp3" } } }, { "category": "product_name", "name": "SUSE Enterprise Storage 4", "product": { "name": "SUSE Enterprise Storage 4", "product_id": "SUSE Enterprise Storage 4", "product_identification_helper": { "cpe": "cpe:/o:suse:ses:4" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.s390x as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x" }, "product_reference": "libicu-doc-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.s390x as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.s390x as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-data-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE OpenStack Cloud 7", "product_id": "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE OpenStack Cloud 7" }, { "category": "default_component_of", "full_product_name": { "name": "icu-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64" }, "product_reference": "icu-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Desktop 12 SP3", "product_id": "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Desktop 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP1", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP1" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3", "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64" }, "product_reference": "libicu-devel-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3", "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-devel-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3", "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x" }, "product_reference": "libicu-devel-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3", "product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64" }, "product_reference": "libicu-devel-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x" }, "product_reference": "libicu-doc-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-data-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12-LTSS", "product_id": "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x" }, "product_reference": "libicu-doc-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-data-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP1-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP1-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x" }, "product_reference": "libicu-doc-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-data-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS", "product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64" }, "product_reference": "libicu-doc-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x" }, "product_reference": "libicu-doc-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64" }, "product_reference": "libicu52_1-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-data-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP3", "product_id": "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64" }, "product_reference": "libicu-doc-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le" }, "product_reference": "libicu-doc-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x" }, "product_reference": "libicu-doc-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64" }, "product_reference": "libicu52_1-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.aarch64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le" }, "product_reference": "libicu52_1-data-52.1-8.7.1.ppc64le", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x" }, "product_reference": "libicu52_1-data-52.1-8.7.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3", "product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "icu-52.1-8.7.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 12 SP3", "product_id": "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64" }, "product_reference": "icu-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Workstation Extension 12 SP3" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-52.1-8.7.1.x86_64 as component of SUSE Enterprise Storage 4", "product_id": "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64" }, "product_reference": "libicu-doc-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Enterprise Storage 4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-52.1-8.7.1.x86_64 as component of SUSE Enterprise Storage 4", "product_id": "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Enterprise Storage 4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-32bit-52.1-8.7.1.x86_64 as component of SUSE Enterprise Storage 4", "product_id": "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-32bit-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Enterprise Storage 4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu52_1-data-52.1-8.7.1.x86_64 as component of SUSE Enterprise Storage 4", "product_id": "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64" }, "product_reference": "libicu52_1-data-52.1-8.7.1.x86_64", "relates_to_product_reference": "SUSE Enterprise Storage 4" } ] }, "vulnerabilities": [ { "cve": "CVE-2014-8146", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-8146" } ], "notes": [ { "category": "general", "text": "The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-8146", "url": "https://www.suse.com/security/cve/CVE-2014-8146" }, { "category": "external", "summary": "SUSE Bug 1066493 for CVE-2014-8146", "url": "https://bugzilla.suse.com/1066493" }, { "category": "external", "summary": "SUSE Bug 910805 for CVE-2014-8146", "url": "https://bugzilla.suse.com/910805" }, { "category": "external", "summary": "SUSE Bug 927951 for CVE-2014-8146", "url": "https://bugzilla.suse.com/927951" }, { "category": "external", "summary": "SUSE Bug 929629 for CVE-2014-8146", "url": "https://bugzilla.suse.com/929629" }, { "category": "external", "summary": "SUSE Bug 959178 for CVE-2014-8146", "url": "https://bugzilla.suse.com/959178" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "important" } ], "title": "CVE-2014-8146" }, { "cve": "CVE-2014-8147", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2014-8147" } ], "notes": [ { "category": "general", "text": "The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2014-8147", "url": "https://www.suse.com/security/cve/CVE-2014-8147" }, { "category": "external", "summary": "SUSE Bug 1066493 for CVE-2014-8147", "url": "https://bugzilla.suse.com/1066493" }, { "category": "external", "summary": "SUSE Bug 1079317 for CVE-2014-8147", "url": "https://bugzilla.suse.com/1079317" }, { "category": "external", "summary": "SUSE Bug 910805 for CVE-2014-8147", "url": "https://bugzilla.suse.com/910805" }, { "category": "external", "summary": "SUSE Bug 910806 for CVE-2014-8147", "url": "https://bugzilla.suse.com/910806" }, { "category": "external", "summary": "SUSE Bug 927951 for CVE-2014-8147", "url": "https://bugzilla.suse.com/927951" }, { "category": "external", "summary": "SUSE Bug 929629 for CVE-2014-8147", "url": "https://bugzilla.suse.com/929629" }, { "category": "external", "summary": "SUSE Bug 959178 for CVE-2014-8147", "url": "https://bugzilla.suse.com/959178" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "important" } ], "title": "CVE-2014-8147" }, { "cve": "CVE-2016-6293", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2016-6293" } ], "notes": [ { "category": "general", "text": "The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ does not ensure that there is a \u0027\\0\u0027 character at the end of a certain temporary array, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2016-6293", "url": "https://www.suse.com/security/cve/CVE-2016-6293" }, { "category": "external", "summary": "SUSE Bug 1035111 for CVE-2016-6293", "url": "https://bugzilla.suse.com/1035111" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2016-6293", "url": "https://bugzilla.suse.com/1123121" }, { "category": "external", "summary": "SUSE Bug 990636 for CVE-2016-6293", "url": "https://bugzilla.suse.com/990636" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "moderate" } ], "title": "CVE-2016-6293" }, { "cve": "CVE-2017-14952", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-14952" } ], "notes": [ { "category": "general", "text": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-14952", "url": "https://www.suse.com/security/cve/CVE-2017-14952" }, { "category": "external", "summary": "SUSE Bug 1067203 for CVE-2017-14952", "url": "https://bugzilla.suse.com/1067203" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-14952", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "moderate" } ], "title": "CVE-2017-14952" }, { "cve": "CVE-2017-15422", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-15422" } ], "notes": [ { "category": "general", "text": "Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-15422", "url": "https://www.suse.com/security/cve/CVE-2017-15422" }, { "category": "external", "summary": "SUSE Bug 1071691 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1071691" }, { "category": "external", "summary": "SUSE Bug 1077999 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1077999" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "moderate" } ], "title": "CVE-2017-15422" }, { "cve": "CVE-2017-17484", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-17484" } ], "notes": [ { "category": "general", "text": "The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International Components for Unicode (ICU) for C/C++ through 60.1 mishandles ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted string, as demonstrated by ZNC.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-17484", "url": "https://www.suse.com/security/cve/CVE-2017-17484" }, { "category": "external", "summary": "SUSE Bug 1072193 for CVE-2017-17484", "url": "https://bugzilla.suse.com/1072193" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-17484", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "moderate" } ], "title": "CVE-2017-17484" }, { "cve": "CVE-2017-7867", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-7867" } ], "notes": [ { "category": "general", "text": "International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-7867", "url": "https://www.suse.com/security/cve/CVE-2017-7867" }, { "category": "external", "summary": "SUSE Bug 1034678 for CVE-2017-7867", "url": "https://bugzilla.suse.com/1034678" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-7867", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "important" } ], "title": "CVE-2017-7867" }, { "cve": "CVE-2017-7868", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-7868" } ], "notes": [ { "category": "general", "text": "International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-7868", "url": "https://www.suse.com/security/cve/CVE-2017-7868" }, { "category": "external", "summary": "SUSE Bug 1034674 for CVE-2017-7868", "url": "https://bugzilla.suse.com/1034674" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-7868", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Enterprise Storage 4:libicu-doc-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-52.1-8.7.1.x86_64", "SUSE Enterprise Storage 4:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Desktop 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP1-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP2-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server 12-LTSS:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP1:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu-doc-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libicu52_1-data-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.aarch64", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.ppc64le", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.s390x", "SUSE Linux Enterprise Software Development Kit 12 SP3:libicu-devel-52.1-8.7.1.x86_64", "SUSE Linux Enterprise Workstation Extension 12 SP3:icu-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu-doc-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-32bit-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-52.1-8.7.1.x86_64", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.s390x", "SUSE OpenStack Cloud 7:libicu52_1-data-52.1-8.7.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-05-23T17:53:04Z", "details": "important" } ], "title": "CVE-2017-7868" } ] }
suse-su-2018:1602-1
Vulnerability from csaf_suse
Notes
{ "document": { "aggregate_severity": { "namespace": "https://www.suse.com/support/security/rating/", "text": "important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright 2024 SUSE LLC. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Security update for icu", "title": "Title of the patch" }, { "category": "description", "text": "This update for icu fixes the following issues:\n\n- CVE-2016-6293: The uloc_acceptLanguageFromHTTP function in common/uloc.cpp did not ensure that there is a \u0027\\0\u0027 character at the end of a certain temporary array, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument. (bsc#990636)\n- CVE-2017-7868: ICU had an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function. (bsc#1034674)\n- CVE-2017-7867: ICU had an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function. (bsc#1034678)\n- CVE-2017-14952: Double free in i18n/zonemeta.cpp allowed remote attackers to execute arbitrary code via a crafted string, aka a \u0027redundant UVector entry clean up function call\u0027 issue. (bsc#1067203)\n- CVE-2017-17484:The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp mishandled ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted string, as demonstrated by ZNC. (bsc#1072193)\n- CVE-2017-15422: An integer overflow in persian calendar calculation was fixed, which could show wrong years. (bsc#1077999)\n", "title": "Description of the patch" }, { "category": "details", "text": "sdksp4-icu-13646,slessp4-icu-13646", "title": "Patchnames" }, { "category": "legal_disclaimer", "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", "title": "Terms of use" } ], "publisher": { "category": "vendor", "contact_details": "https://www.suse.com/support/security/contact/", "name": "SUSE Product Security Team", "namespace": "https://www.suse.com/" }, "references": [ { "category": "external", "summary": "SUSE ratings", "url": "https://www.suse.com/support/security/rating/" }, { "category": "self", "summary": "URL of this CSAF notice", "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2018_1602-1.json" }, { "category": "self", "summary": "URL for SUSE-SU-2018:1602-1", "url": "https://www.suse.com/support/update/announcement/2018/suse-su-20181602-1/" }, { "category": "self", "summary": "E-Mail link for SUSE-SU-2018:1602-1", "url": "https://lists.suse.com/pipermail/sle-security-updates/2018-June/004167.html" }, { "category": "self", "summary": "SUSE Bug 1034674", "url": "https://bugzilla.suse.com/1034674" }, { "category": "self", "summary": "SUSE Bug 1034678", "url": "https://bugzilla.suse.com/1034678" }, { "category": "self", "summary": "SUSE Bug 1067203", "url": "https://bugzilla.suse.com/1067203" }, { "category": "self", "summary": "SUSE Bug 1072193", "url": "https://bugzilla.suse.com/1072193" }, { "category": "self", "summary": "SUSE Bug 1077999", "url": "https://bugzilla.suse.com/1077999" }, { "category": "self", "summary": "SUSE Bug 990636", "url": "https://bugzilla.suse.com/990636" }, { "category": "self", "summary": "SUSE CVE CVE-2016-6293 page", "url": "https://www.suse.com/security/cve/CVE-2016-6293/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-14952 page", "url": "https://www.suse.com/security/cve/CVE-2017-14952/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-15422 page", "url": "https://www.suse.com/security/cve/CVE-2017-15422/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-17484 page", "url": "https://www.suse.com/security/cve/CVE-2017-17484/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-7867 page", "url": "https://www.suse.com/security/cve/CVE-2017-7867/" }, { "category": "self", "summary": "SUSE CVE CVE-2017-7868 page", "url": "https://www.suse.com/security/cve/CVE-2017-7868/" } ], "title": "Security update for icu", "tracking": { "current_release_date": "2018-06-08T09:39:04Z", "generator": { "date": "2018-06-08T09:39:04Z", "engine": { "name": "cve-database.git:bin/generate-csaf.pl", "version": "1" } }, "id": "SUSE-SU-2018:1602-1", "initial_release_date": "2018-06-08T09:39:04Z", "revision_history": [ { "date": "2018-06-08T09:39:04Z", "number": "1", "summary": "Current version" } ], "status": "final", "version": "1" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version", "name": "icu-4.0-47.6.1.i586", "product": { "name": "icu-4.0-47.6.1.i586", "product_id": "icu-4.0-47.6.1.i586" } }, { "category": "product_version", "name": "libicu-devel-4.0-47.6.1.i586", "product": { "name": "libicu-devel-4.0-47.6.1.i586", "product_id": "libicu-devel-4.0-47.6.1.i586" } }, { "category": "product_version", "name": "libicu-4.0-47.6.1.i586", "product": { "name": "libicu-4.0-47.6.1.i586", "product_id": "libicu-4.0-47.6.1.i586" } }, { "category": "product_version", "name": "libicu-doc-4.0-47.6.1.i586", "product": { "name": "libicu-doc-4.0-47.6.1.i586", "product_id": "libicu-doc-4.0-47.6.1.i586" } } ], "category": "architecture", "name": "i586" }, { "branches": [ { "category": "product_version", "name": "libicu-devel-4.0-47.6.1.ia64", "product": { "name": "libicu-devel-4.0-47.6.1.ia64", "product_id": "libicu-devel-4.0-47.6.1.ia64" } }, { "category": "product_version", "name": "libicu-4.0-47.6.1.ia64", "product": { "name": "libicu-4.0-47.6.1.ia64", "product_id": "libicu-4.0-47.6.1.ia64" } }, { "category": "product_version", "name": "libicu-doc-4.0-47.6.1.ia64", "product": { "name": "libicu-doc-4.0-47.6.1.ia64", "product_id": "libicu-doc-4.0-47.6.1.ia64" } }, { "category": "product_version", "name": "libicu-x86-4.0-47.6.1.ia64", "product": { "name": "libicu-x86-4.0-47.6.1.ia64", "product_id": "libicu-x86-4.0-47.6.1.ia64" } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "libicu-devel-4.0-47.6.1.ppc64", "product": { "name": "libicu-devel-4.0-47.6.1.ppc64", "product_id": "libicu-devel-4.0-47.6.1.ppc64" } }, { "category": "product_version", "name": "libicu-devel-32bit-4.0-47.6.1.ppc64", "product": { "name": "libicu-devel-32bit-4.0-47.6.1.ppc64", "product_id": "libicu-devel-32bit-4.0-47.6.1.ppc64" } }, { "category": "product_version", "name": "libicu-4.0-47.6.1.ppc64", "product": { "name": "libicu-4.0-47.6.1.ppc64", "product_id": "libicu-4.0-47.6.1.ppc64" } }, { "category": "product_version", "name": "libicu-32bit-4.0-47.6.1.ppc64", "product": { "name": "libicu-32bit-4.0-47.6.1.ppc64", "product_id": "libicu-32bit-4.0-47.6.1.ppc64" } }, { "category": "product_version", "name": "libicu-doc-4.0-47.6.1.ppc64", "product": { "name": "libicu-doc-4.0-47.6.1.ppc64", "product_id": "libicu-doc-4.0-47.6.1.ppc64" } } ], "category": "architecture", "name": "ppc64" }, { "branches": [ { "category": "product_version", "name": "libicu-devel-4.0-47.6.1.s390x", "product": { "name": "libicu-devel-4.0-47.6.1.s390x", "product_id": "libicu-devel-4.0-47.6.1.s390x" } }, { "category": "product_version", "name": "libicu-devel-32bit-4.0-47.6.1.s390x", "product": { "name": "libicu-devel-32bit-4.0-47.6.1.s390x", "product_id": "libicu-devel-32bit-4.0-47.6.1.s390x" } }, { "category": "product_version", "name": "libicu-4.0-47.6.1.s390x", "product": { "name": "libicu-4.0-47.6.1.s390x", "product_id": "libicu-4.0-47.6.1.s390x" } }, { "category": "product_version", "name": "libicu-32bit-4.0-47.6.1.s390x", "product": { "name": "libicu-32bit-4.0-47.6.1.s390x", "product_id": "libicu-32bit-4.0-47.6.1.s390x" } }, { "category": "product_version", "name": "libicu-doc-4.0-47.6.1.s390x", "product": { "name": "libicu-doc-4.0-47.6.1.s390x", "product_id": "libicu-doc-4.0-47.6.1.s390x" } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "icu-4.0-47.6.1.x86_64", "product": { "name": "icu-4.0-47.6.1.x86_64", "product_id": "icu-4.0-47.6.1.x86_64" } }, { "category": "product_version", "name": "libicu-32bit-4.0-47.6.1.x86_64", "product": { "name": "libicu-32bit-4.0-47.6.1.x86_64", "product_id": "libicu-32bit-4.0-47.6.1.x86_64" } }, { "category": "product_version", "name": "libicu-devel-4.0-47.6.1.x86_64", "product": { "name": "libicu-devel-4.0-47.6.1.x86_64", "product_id": "libicu-devel-4.0-47.6.1.x86_64" } }, { "category": "product_version", "name": "libicu-devel-32bit-4.0-47.6.1.x86_64", "product": { "name": "libicu-devel-32bit-4.0-47.6.1.x86_64", "product_id": "libicu-devel-32bit-4.0-47.6.1.x86_64" } }, { "category": "product_version", "name": "libicu-4.0-47.6.1.x86_64", "product": { "name": "libicu-4.0-47.6.1.x86_64", "product_id": "libicu-4.0-47.6.1.x86_64" } }, { "category": "product_version", "name": "libicu-doc-4.0-47.6.1.x86_64", "product": { "name": "libicu-doc-4.0-47.6.1.x86_64", "product_id": "libicu-doc-4.0-47.6.1.x86_64" } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_name", "name": "SUSE Linux Enterprise Software Development Kit 11 SP4", "product": { "name": "SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4", "product_identification_helper": { "cpe": "cpe:/a:suse:sle-sdk:11:sp4" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server 11 SP4", "product": { "name": "SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4", "product_identification_helper": { "cpe": "cpe:/o:suse:suse_sles:11:sp4" } } }, { "category": "product_name", "name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product": { "name": "SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_identification_helper": { "cpe": "cpe:/o:suse:sles_sap:11:sp4" } } } ], "category": "product_family", "name": "SUSE Linux Enterprise" } ], "category": "vendor", "name": "SUSE" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "icu-4.0-47.6.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586" }, "product_reference": "icu-4.0-47.6.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "icu-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64" }, "product_reference": "icu-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64" }, "product_reference": "libicu-32bit-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-4.0-47.6.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586" }, "product_reference": "libicu-devel-4.0-47.6.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64" }, "product_reference": "libicu-devel-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64" }, "product_reference": "libicu-devel-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x" }, "product_reference": "libicu-devel-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" }, "product_reference": "libicu-devel-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-32bit-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64" }, "product_reference": "libicu-devel-32bit-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-32bit-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x" }, "product_reference": "libicu-devel-32bit-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-devel-32bit-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4", "product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64" }, "product_reference": "libicu-devel-32bit-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.i586 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586" }, "product_reference": "libicu-4.0-47.6.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64" }, "product_reference": "libicu-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64" }, "product_reference": "libicu-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x" }, "product_reference": "libicu-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64" }, "product_reference": "libicu-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64" }, "product_reference": "libicu-32bit-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x" }, "product_reference": "libicu-32bit-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64" }, "product_reference": "libicu-32bit-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.i586 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586" }, "product_reference": "libicu-doc-4.0-47.6.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64" }, "product_reference": "libicu-doc-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64" }, "product_reference": "libicu-doc-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x" }, "product_reference": "libicu-doc-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64" }, "product_reference": "libicu-doc-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-x86-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Server 11 SP4", "product_id": "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64" }, "product_reference": "libicu-x86-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Server 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586" }, "product_reference": "libicu-4.0-47.6.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64" }, "product_reference": "libicu-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64" }, "product_reference": "libicu-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x" }, "product_reference": "libicu-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64" }, "product_reference": "libicu-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64" }, "product_reference": "libicu-32bit-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x" }, "product_reference": "libicu-32bit-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-32bit-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64" }, "product_reference": "libicu-32bit-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.i586 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586" }, "product_reference": "libicu-doc-4.0-47.6.1.i586", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64" }, "product_reference": "libicu-doc-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.ppc64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64" }, "product_reference": "libicu-doc-4.0-47.6.1.ppc64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.s390x as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x" }, "product_reference": "libicu-doc-4.0-47.6.1.s390x", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-doc-4.0-47.6.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64" }, "product_reference": "libicu-doc-4.0-47.6.1.x86_64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" }, { "category": "default_component_of", "full_product_name": { "name": "libicu-x86-4.0-47.6.1.ia64 as component of SUSE Linux Enterprise Server for SAP Applications 11 SP4", "product_id": "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64" }, "product_reference": "libicu-x86-4.0-47.6.1.ia64", "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 11 SP4" } ] }, "vulnerabilities": [ { "cve": "CVE-2016-6293", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2016-6293" } ], "notes": [ { "category": "general", "text": "The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ does not ensure that there is a \u0027\\0\u0027 character at the end of a certain temporary array, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2016-6293", "url": "https://www.suse.com/security/cve/CVE-2016-6293" }, { "category": "external", "summary": "SUSE Bug 1035111 for CVE-2016-6293", "url": "https://bugzilla.suse.com/1035111" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2016-6293", "url": "https://bugzilla.suse.com/1123121" }, { "category": "external", "summary": "SUSE Bug 990636 for CVE-2016-6293", "url": "https://bugzilla.suse.com/990636" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-06-08T09:39:04Z", "details": "moderate" } ], "title": "CVE-2016-6293" }, { "cve": "CVE-2017-14952", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-14952" } ], "notes": [ { "category": "general", "text": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-14952", "url": "https://www.suse.com/security/cve/CVE-2017-14952" }, { "category": "external", "summary": "SUSE Bug 1067203 for CVE-2017-14952", "url": "https://bugzilla.suse.com/1067203" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-14952", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-06-08T09:39:04Z", "details": "moderate" } ], "title": "CVE-2017-14952" }, { "cve": "CVE-2017-15422", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-15422" } ], "notes": [ { "category": "general", "text": "Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-15422", "url": "https://www.suse.com/security/cve/CVE-2017-15422" }, { "category": "external", "summary": "SUSE Bug 1071691 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1071691" }, { "category": "external", "summary": "SUSE Bug 1077999 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1077999" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-15422", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 6.5, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-06-08T09:39:04Z", "details": "moderate" } ], "title": "CVE-2017-15422" }, { "cve": "CVE-2017-17484", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-17484" } ], "notes": [ { "category": "general", "text": "The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International Components for Unicode (ICU) for C/C++ through 60.1 mishandles ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted string, as demonstrated by ZNC.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-17484", "url": "https://www.suse.com/security/cve/CVE-2017-17484" }, { "category": "external", "summary": "SUSE Bug 1072193 for CVE-2017-17484", "url": "https://bugzilla.suse.com/1072193" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-17484", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.3, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-06-08T09:39:04Z", "details": "moderate" } ], "title": "CVE-2017-17484" }, { "cve": "CVE-2017-7867", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-7867" } ], "notes": [ { "category": "general", "text": "International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-7867", "url": "https://www.suse.com/security/cve/CVE-2017-7867" }, { "category": "external", "summary": "SUSE Bug 1034678 for CVE-2017-7867", "url": "https://bugzilla.suse.com/1034678" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-7867", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-06-08T09:39:04Z", "details": "important" } ], "title": "CVE-2017-7867" }, { "cve": "CVE-2017-7868", "ids": [ { "system_name": "SUSE CVE Page", "text": "https://www.suse.com/security/cve/CVE-2017-7868" } ], "notes": [ { "category": "general", "text": "International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function.", "title": "CVE description" } ], "product_status": { "recommended": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] }, "references": [ { "category": "external", "summary": "CVE-2017-7868", "url": "https://www.suse.com/security/cve/CVE-2017-7868" }, { "category": "external", "summary": "SUSE Bug 1034674 for CVE-2017-7868", "url": "https://bugzilla.suse.com/1034674" }, { "category": "external", "summary": "SUSE Bug 1123121 for CVE-2017-7868", "url": "https://bugzilla.suse.com/1123121" } ], "remediations": [ { "category": "vendor_fix", "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", "product_ids": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "scores": [ { "cvss_v3": { "baseScore": 7.5, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" }, "products": [ "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.i586", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ia64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.s390x", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-doc-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Server for SAP Applications 11 SP4:libicu-x86-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:icu-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-32bit-4.0-47.6.1.x86_64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.i586", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ia64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.ppc64", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.s390x", "SUSE Linux Enterprise Software Development Kit 11 SP4:libicu-devel-4.0-47.6.1.x86_64" ] } ], "threats": [ { "category": "impact", "date": "2018-06-08T09:39:04Z", "details": "important" } ], "title": "CVE-2017-7868" } ] }
cnvd-2017-33060
Vulnerability from cnvd
Title: Unicode (ICU) for C/C++ i18n/zonemeta.cpp文件双重释放漏洞
Description:
Unicode(ICU)for C/C++是一个C/C++函数库,可为软件应用提供Unicode和全球化支持。
Unicode (ICU) for C/C++ 59.1及之前的版本中的i18n/zonemeta.cpp文件存在双重释放漏洞。远程攻击者可借助特制的字符串利用该漏洞执行任意代码。
Severity: 高
Patch Name: Unicode (ICU) for C/C++ i18n/zonemeta.cpp文件双重释放漏洞的补丁
Patch Description:
Unicode(ICU)for C/C++是一个C/C++函数库,可为软件应用提供Unicode和全球化支持。
Unicode (ICU) for C/C++ 59.1及之前的版本中的i18n/zonemeta.cpp文件存在双重释放漏洞。远程攻击者可借助特制的字符串利用该漏洞执行任意代码。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description:
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp
Reference: http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp
Name | ICU Project International Components for Unicode <=59.1 |
---|
{ "cves": { "cve": { "cveNumber": "CVE-2017-14952", "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14952" } }, "description": "Unicode\uff08ICU\uff09for C/C++\u662f\u4e00\u4e2aC/C++\u51fd\u6570\u5e93\uff0c\u53ef\u4e3a\u8f6f\u4ef6\u5e94\u7528\u63d0\u4f9bUnicode\u548c\u5168\u7403\u5316\u652f\u6301\u3002\r\n\r\nUnicode (ICU) for C/C++ 59.1\u53ca\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684i18n/zonemeta.cpp\u6587\u4ef6\u5b58\u5728\u53cc\u91cd\u91ca\u653e\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u5b57\u7b26\u4e32\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002", "discovererName": "unknwon", "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp", "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e", "number": "CNVD-2017-33060", "openTime": "2017-11-08", "patchDescription": "Unicode\uff08ICU\uff09for C/C++\u662f\u4e00\u4e2aC/C++\u51fd\u6570\u5e93\uff0c\u53ef\u4e3a\u8f6f\u4ef6\u5e94\u7528\u63d0\u4f9bUnicode\u548c\u5168\u7403\u5316\u652f\u6301\u3002\r\n\r\nUnicode (ICU) for C/C++ 59.1\u53ca\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684i18n/zonemeta.cpp\u6587\u4ef6\u5b58\u5728\u53cc\u91cd\u91ca\u653e\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u5b57\u7b26\u4e32\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002", "patchName": "Unicode (ICU) for C/C++ i18n/zonemeta.cpp\u6587\u4ef6\u53cc\u91cd\u91ca\u653e\u6f0f\u6d1e\u7684\u8865\u4e01", "products": { "product": "ICU Project International Components for Unicode \u003c=59.1" }, "referenceLink": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp", "serverity": "\u9ad8", "submitTime": "2017-10-20", "title": "Unicode (ICU) for C/C++ i18n/zonemeta.cpp\u6587\u4ef6\u53cc\u91cd\u91ca\u653e\u6f0f\u6d1e" }
fkie_cve-2017-14952
Vulnerability from fkie_nvd
Vendor | Product | Version | |
---|---|---|---|
icu-project | international_components_for_unicode | * |
{ "configurations": [ { "nodes": [ { "cpeMatch": [ { "criteria": "cpe:2.3:a:icu-project:international_components_for_unicode:*:*:*:*:*:c\\/c\\+\\+:*:*", "matchCriteriaId": "D014CA1A-E812-43A8-BA9B-4CEBD3D57109", "versionEndIncluding": "59.1", "vulnerable": true } ], "negate": false, "operator": "OR" } ] } ], "cveTags": [], "descriptions": [ { "lang": "en", "value": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue." }, { "lang": "es", "value": "Doble liberaci\u00f3n (double free) en i18n/zonemeta.cpp en International Components for Unicode (ICU) para C/C++ hasta la versi\u00f3n 59.1 permite que atacantes remotos ejecuten c\u00f3digo arbitrario mediante una cadena manipulada. Esto tambi\u00e9n se conoce como \"redundant UVector entry clean up function call\"." } ], "id": "CVE-2017-14952", "lastModified": "2025-04-20T01:37:25.860", "metrics": { "cvssMetricV2": [ { "acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false } ], "cvssMetricV30": [ { "cvssData": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary" } ] }, "published": "2017-10-16T16:29:00.887", "references": [ { "source": "cve@mitre.org", "tags": [ "Issue Tracking", "Patch" ], "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "source": "cve@mitre.org", "tags": [ "Third Party Advisory" ], "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "source": "cve@mitre.org", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Issue Tracking", "Patch" ], "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory" ], "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" } ], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [ { "description": [ { "lang": "en", "value": "CWE-415" } ], "source": "nvd@nist.gov", "type": "Primary" } ] }
gsd-2017-14952
Vulnerability from gsd
{ "GSD": { "alias": "CVE-2017-14952", "description": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue.", "id": "GSD-2017-14952", "references": [ "https://www.suse.com/security/cve/CVE-2017-14952.html", "https://ubuntu.com/security/CVE-2017-14952", "https://advisories.mageia.org/CVE-2017-14952.html", "https://security.archlinux.org/CVE-2017-14952" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2017-14952" ], "details": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue.", "id": "GSD-2017-14952", "modified": "2023-12-13T01:21:13.110731Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-14952", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/", "refsource": "MISC", "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "name": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp", "refsource": "CONFIRM", "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "refsource": "MISC", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:icu-project:international_components_for_unicode:*:*:*:*:*:c\\/c\\+\\+:*:*", "cpe_name": [], "versionEndIncluding": "59.1", "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2017-14952" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-415" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/", "refsource": "MISC", "tags": [ "Third Party Advisory" ], "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu/" }, { "name": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp", "refsource": "CONFIRM", "tags": [ "Issue Tracking", "Patch" ], "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html", "refsource": "MISC", "tags": [], "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false }, "baseMetricV3": { "cvssV3": { "attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0" }, "exploitabilityScore": 3.9, "impactScore": 5.9 } }, "lastModifiedDate": "2019-04-23T19:29Z", "publishedDate": "2017-10-16T16:29Z" } } }
ghsa-35gv-g55r-237w
Vulnerability from github
Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue.
{ "affected": [], "aliases": [ "CVE-2017-14952" ], "database_specific": { "cwe_ids": [ "CWE-415" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2017-10-16T16:29:00Z", "severity": "CRITICAL" }, "details": "Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a \"redundant UVector entry clean up function call\" issue.", "id": "GHSA-35gv-g55r-237w", "modified": "2025-04-20T03:46:51Z", "published": "2022-05-14T01:07:15Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14952" }, { "type": "WEB", "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html" }, { "type": "WEB", "url": "http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp" }, { "type": "WEB", "url": "http://www.sourcebrella.com/blog/double-free-vulnerability-international-components-unicode-icu" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.