Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 537560 (CVE-2014-7923) - <dev-libs/icu-53: two memory corruptions (CVE-2014-{7923,7926,7940})
Summary: <dev-libs/icu-53: two memory corruptions (CVE-2014-{7923,7926,7940})
Status: RESOLVED FIXED
Alias: CVE-2014-7923
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://googlechromereleases.blogspot....
Whiteboard: A3 [glsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2015-01-24 15:51 UTC by Agostino Sarubbo
Modified: 2015-03-14 18:27 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2015-01-24 15:51:57 UTC 
From ${URL} :

[$5000][430353] High CVE-2014-7923: Memory corruption in ICU. Credit to 
yangdingning.
[$4000][422824] High CVE-2014-7926: Memory corruption in ICU. Credit to 
yangdingning.



@maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
Comment 1 Agostino Sarubbo gentoo-dev 2015-01-24 15:53:36 UTC 
and:

[$1000][433866] Medium CVE-2014-7940: Uninitialized-value in ICU. Credit to miaubiz.
Comment 2 Andreas K. Hüttel archtester gentoo-dev 2015-02-07 16:59:51 UTC 
CVE-2014-7923
From NIST: "The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a (1) zero-length quantifier or (2) look-behind expression, a different vulnerability than CVE-2014-7926."
I.e. affects <53

CVE-2014-7926
From NIST: "The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a (1) zero-length quantifier or (2) look-behind expression, a different vulnerability than CVE-2014-7923."
I.e. affects <53

CVE-2014-7940
From NIST: "The collator implementation in i18n/ucol.cpp in International Components for Unicode (ICU) 52 through SVN revision 293126, as used in Google Chrome before 40.0.2214.91, does not initialize memory for a data structure, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted character sequence."
I.e. affects <53

Please help kick remaining arches in bug 523164
Comment 3 Andreas K. Hüttel archtester gentoo-dev 2015-02-14 17:44:20 UTC 
We stabilize even newer dev-libs/54.1-r1 in bug 539108 (where this is fixed too).
Comment 4 Andreas K. Hüttel archtester gentoo-dev 2015-02-25 00:23:10 UTC 
All vulnerable versions removed. Office out.
Comment 5 Yury German Gentoo Infrastructure gentoo-dev 2015-02-25 04:42:21 UTC 
GLSA for ICU already exist, adding this to the GLSA.
Comment 6 GLSAMaker/CVETool Bot gentoo-dev 2015-03-14 18:27:21 UTC 
This issue was resolved and addressed in
 GLSA 201503-06 at https://security.gentoo.org/glsa/201503-06
by GLSA coordinator Kristian Fiskerstrand (K_F).