[3.3] icu: multiple issues (CVE-2017-7867, CVE-2017-7868)
CVE-2017-7867: Heap-buffer overflow in utext_setNativeIndex function
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-7867
Patch:
http://bugs.icu-project.org/trac/changeset/39671
CVE-2017-7868: Heap-buffer overflow in utext_moveIndex32 function
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-7868
Patch:
http://bugs.icu-project.org/trac/changeset/39671
(from redmine: issue id 7192, created on 2017-04-24, closed on 2017-04-25)
- Relations:
- parent #7188 (closed)
- Changesets:
- Revision cef6067b on 2017-04-25T11:39:35Z:
main/icu: security fixes #7192 (CVE-2017-7867, CVE-2017-7868)