Bug 44665

Summary:	icu: Multiple issues (4.1)
Product:	UCS	Reporter:	Arvid Requate <requate>
Component:	Security updates	Assignee:	Arvid Requate <requate>
Status:	CLOSED FIXED	QA Contact:	Jürn Brodersen <brodersen>
Severity:	normal
Priority:	P2	CC:	gohmann
Version:	UCS 4.1	Flags:	requate: Patch_Available+
Target Milestone:	UCS 4.1-5-errata
Hardware:	Other
OS:	Linux
What kind of report is it?:	Security Issue	What type of bug is this?:	---
Who will be affected by this bug?:	---	How will those affected feel about the bug?:	---
User Pain:		Enterprise Customer affected?:
School Customer affected?:		ISV affected?:
Waiting Support:		Flags outvoted (downgraded) after PO Review:
Ticket number:		Bug group (optional):	Security
Max CVSS v3 score:	8.4 (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
Bug Depends on:	44415
Bug Blocks:

Description Arvid Requate

2017-05-23 14:34:20 CEST

Upstream Debian package version 4.8.1.1-12+deb7u7 fixes these issues:

* out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function (CVE-2017-7867)

* out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function (CVE-2017-7868)

Comment 1 Arvid Requate

2017-12-11 19:20:18 CET

Imported and built.

Advisory: https://git.knut.univention.de/univention/ucs/blob/4.1-5/doc/errata/staging/icu.yaml

Comment 2 Jürn Brodersen

2017-12-12 10:49:08 CET

YAML fail (maintenance)?
http://jenkins.knut.univention.de:8080/job/UCS-4.1/job/UCS-4.1-5/job/ErrataValidation/32/testReport/icu/

Comment 3 Arvid Requate

2017-12-12 13:05:25 CET

Yes, the check_errata_for_release script bails out due to the extended maintenance UCS 4.1-5. I've added an ignore-tag for this to the advisory.

Comment 4 Jürn Brodersen

2017-12-12 13:25:24 CET

Installation: OK
YAML: OK

Verified

Comment 5 Arvid Requate

2017-12-14 13:24:27 CET

<http://errata.software-univention.de/ucs/4.1/487.html>