VYPR

rpm package

suse/icu&distro=SUSE Linux Enterprise Server 15 SP5-LTSS

pkg:rpm/suse/icu&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSS

Vulnerabilities (2)

  • CVE-2025-5222HigMay 27, 2025
    affected < 65.1-150200.4.15.1fixed 65.1-150200.4.15.1

    A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution.

  • CVE-2020-21913Sep 20, 2021
    affected < 65.1-150200.4.15.1fixed 65.1-150200.4.15.1

    International Components for Unicode (ICU-20850) v66.1 was discovered to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp.