ICU updated to 58.1, Fixing CVE-2016-7415
Closed, WontfixPublic
Actions

Edit Task
Edit Related Tasks...
Create Subtask
Edit Parent Tasks
Edit Subtasks
Merge Duplicates In
Close As Duplicate
Edit Related Objects...
Edit Commits
Edit Mocks
Edit Revisions
Mute Notifications
Start Tracking Time
Award Token
Flag For Later

Assigned To

Authored By

	BridouZ
	Nov 5 2016, 8:51 AM

Description

A bug has been discovered on ICU

CVE-2016-7415

I updated the package from 57.1 to 58.1, everything should be fine.

Please tell me if I misunderstood (once again) the process for creating updated packages and patches :)

Event Timeline

BridouZ created this task.Nov 5 2016, 8:51 AM

ikey claimed this task.Nov 5 2016, 10:46 AM

57.1 to 58.1 represents an ABI break

Until this becomes available there is no patch to backport: http://bugs.icu-project.org/trac/ticket/12745

Also note Solus builds with -fstack-protector-strong so the calling application would crash vs represent an actual security
exploit. I'll follow this.

BridouZ closed this task as Wontfix.Nov 29 2016, 2:08 PM

ICU updated to 58.1, Fixing CVE-2016-7415Closed, WontfixPublicActions

Description

Event Timeline

ICU updated to 58.1, Fixing CVE-2016-7415
Closed, WontfixPublic
Actions