SUSE-SU-2012:0109-1: moderate: Security update for icu

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Thu Jan 19 16:08:36 MST 2012


   SUSE Security Update: Security update for icu
______________________________________________________________________________

Announcement ID:    SUSE-SU-2012:0109-1
Rating:             moderate
References:         #657910 
Cross-References:   CVE-2010-4409
Affected Products:
                    SUSE Linux Enterprise Server 10 SP4
                    SUSE Linux Enterprise Desktop 10 SP4
                    SLE SDK 10 SP4
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:


   The following bug has been fixed:

   * An integer overflow in the getSymbol() function could
   crash applications using icu (CVE-2010-4409)

   Security Issue reference:

   * CVE-2010-4409
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4409
   >



Package List:

   - SUSE Linux Enterprise Server 10 SP4 (ia64 ppc s390x):

      libicu-3.4-16.13.1
      libicu-devel-3.4-16.13.1
      libicu-doc-3.4-16.13.1

   - SUSE Linux Enterprise Server 10 SP4 (i586 x86_64):

      libicu-3.4-16.13.2
      libicu-devel-3.4-16.13.2
      libicu-doc-3.4-16.13.2

   - SUSE Linux Enterprise Server 10 SP4 (x86_64):

      libicu-32bit-3.4-16.13.2
      libicu-devel-32bit-3.4-16.13.2

   - SUSE Linux Enterprise Server 10 SP4 (s390x):

      libicu-32bit-3.4-16.13.1
      libicu-devel-32bit-3.4-16.13.1

   - SUSE Linux Enterprise Server 10 SP4 (ia64):

      libicu-x86-3.4-16.13.2

   - SUSE Linux Enterprise Server 10 SP4 (ppc):

      libicu-64bit-3.4-16.13.1
      libicu-devel-64bit-3.4-16.13.1

   - SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):

      icu-3.4-16.13.2
      libicu-3.4-16.13.2

   - SUSE Linux Enterprise Desktop 10 SP4 (x86_64):

      libicu-32bit-3.4-16.13.2

   - SLE SDK 10 SP4 (ia64 ppc s390x):

      icu-3.4-16.13.1
      icu-data-3.4-16.13.1
      libicu-devel-3.4-16.13.1
      libicu-doc-3.4-16.13.1

   - SLE SDK 10 SP4 (i586 x86_64):

      icu-3.4-16.13.2
      icu-data-3.4-16.13.2
      libicu-devel-3.4-16.13.2
      libicu-doc-3.4-16.13.2

   - SLE SDK 10 SP4 (x86_64):

      libicu-devel-32bit-3.4-16.13.2

   - SLE SDK 10 SP4 (s390x):

      libicu-devel-32bit-3.4-16.13.1

   - SLE SDK 10 SP4 (ppc):

      libicu-devel-64bit-3.4-16.13.1


References:

   http://support.novell.com/security/cve/CVE-2010-4409.html
   https://bugzilla.novell.com/657910
   http://download.novell.com/patch/finder/?keywords=e7ea96f0f245f1bd2f74770ba314e188



More information about the sle-security-updates mailing list