Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2023, 03:23
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization. |
02 Feb 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
Summary | CVE-2011-4599 icu: Stack-based buffer overflow by canonicalizing the given localeID | |
References |
|
Information
Published : 2012-06-21 15:55
Updated : 2023-12-10 11:16
NVD link : CVE-2011-4599
Mitre link : CVE-2011-4599
CVE.ORG link : CVE-2011-4599
JSON object : View
Products Affected
icu-project
- international_components_for_unicode
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer