Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 uses an integer data type that is inconsistent with a header file, which allows remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
International Components for Unicode 缓冲区错误漏洞
Vulnerability Description
International Components for Unicode(ICU)是美国IBM公司和其他公司共同开发的一个为C/C++和Java编程语言提供了一整套操作Unicode数据的函数库,也是一个用于支持软件国际化的开源项目。 ICU 55.1之前版本的ICU4C中的Unicode Bidirectional Algorithm实现过程的common/ubidi.c文件中的‘resolveImplicitLevels’函数存在安全漏洞,该漏洞源于程序使用与头文件不一致的整数数据类型。远程攻击者可借
CVSS Information
N/A
Vulnerability Type
N/A