——————————————————————————–
Fedora Update Notification
FEDORA-2015-16314
2015-10-13 12:51:16.882949
——————————————————————————–

Name : icu
Product : Fedora 22
Version : 54.1
Release : 4.fc22
URL : http://www.icu-project.org/
Summary : International Components for Unicode
Description :
Tools and utilities for developing with icu.

——————————————————————————–
Update Information:

Security fix for CVE-2014-6585 CVE-2014-6591 CVE-2014-7923 CVE-2014-7926
CVE-2014-9654
——————————————————————————–
References:

[ 1 ] Bug #1183645 – CVE-2014-6585 ICU: font parsing OOB read (OpenJDK 2D, 8055489)
https://bugzilla.redhat.com/show_bug.cgi?id=1183645
[ 2 ] Bug #1183646 – CVE-2014-6591 ICU: font parsing OOB read (OpenJDK 2D, 8056276)
https://bugzilla.redhat.com/show_bug.cgi?id=1183646
[ 3 ] Bug #1185202 – CVE-2014-7923 ICU: regexp engine missing look-behind expression range check
https://bugzilla.redhat.com/show_bug.cgi?id=1185202
[ 4 ] Bug #1185205 – CVE-2014-7926 ICU: regexp engine incorrect handling of a zero length quantifier
https://bugzilla.redhat.com/show_bug.cgi?id=1185205
[ 5 ] Bug #1190129 – CVE-2014-9654 icu: insufficient size limit checks in regular expression compiler
https://bugzilla.redhat.com/show_bug.cgi?id=1190129
——————————————————————————–

This update can be installed with the “yum” update program. Use
su -c ‘yum update icu’ at the command line.
For more information, refer to “Managing Software with yum”,
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce