Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
International Components for Unicode 基于堆的缓冲区错误漏洞
Vulnerability Description
International Components for Unicode(ICU)是美国IBM公司和其他公司共同开发的一个为C/C++和Java编程语言提供了一整套操作Unicode数据的函数库,也是一个用于支持软件国际化的开源项目。 ICU 55.1之前版本的ICU4C中的Unicode Bidirectional Algorithm实现过程的common/ubidi.c文件中的‘resolveImplicitLevels’函数存在安全漏洞,该漏洞源于程序没有正确定向追踪隔离的文本片段。远程攻击者可借助
CVSS Information
N/A
Vulnerability Type
N/A