CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
89.1%
It was discovered that ICU contained a race condition affecting multi-
threaded applications. If an application using ICU processed crafted data,
an attacker could cause it to crash or potentially execute arbitrary code
with the privileges of the user invoking the program. This issue only
affected Ubuntu 12.04 LTS and Ubuntu 12.10. (CVE-2013-0900)
It was discovered that ICU incorrectly handled memory operations. If an
application using ICU processed crafted data, an attacker could cause it to
crash or potentially execute arbitrary code with the privileges of the user
invoking the program. (CVE-2013-2924)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 13.04 | noarch | libicu48 | < 4.8.1.1-12ubuntu0.1 | UNKNOWN |
Ubuntu | 13.04 | noarch | libicu-dev | < 4.8.1.1-12ubuntu0.1 | UNKNOWN |
Ubuntu | 13.04 | noarch | libicu48-dbg | < 4.8.1.1-12ubuntu0.1 | UNKNOWN |
Ubuntu | 12.10 | noarch | libicu48 | < 4.8.1.1-8ubuntu0.1 | UNKNOWN |
Ubuntu | 12.10 | noarch | libicu-dev | < 4.8.1.1-8ubuntu0.1 | UNKNOWN |
Ubuntu | 12.10 | noarch | libicu48-dbg | < 4.8.1.1-8ubuntu0.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | libicu48 | < 4.8.1.1-3ubuntu0.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | lib32icu-dev | < 4.8.1.1-3ubuntu0.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | lib32icu48 | < 4.8.1.1-3ubuntu0.1 | UNKNOWN |
Ubuntu | 12.04 | noarch | libicu-dev | < 4.8.1.1-3ubuntu0.1 | UNKNOWN |