Back to search
CVE-2007-4771
Published: Jan 28, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
libicu-dointerval-bo(39936)
vdb-entry
x_refsource_XF
233922
vendor-advisory
x_refsource_SUNALERT
28615
third-party-advisory
x_refsource_SECUNIA
29852
third-party-advisory
x_refsource_SECUNIA
28783
third-party-advisory
x_refsource_SECUNIA
29291
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2008:023
vendor-advisory
x_refsource_SUSE
29242
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=429025
x_refsource_CONFIRM
1019269
vdb-entry
x_refsource_SECTRACK
GLSA-200805-16
vendor-advisory
x_refsource_GENTOO
29987
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2008:005
vendor-advisory
x_refsource_SUSE
27455
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:10507
vdb-entry
signature
x_refsource_OVAL
29294
third-party-advisory
x_refsource_SECUNIA
http://www.openoffice.org/security/cves/CVE-2007-4770.html
x_refsource_CONFIRM
GLSA-200803-20
vendor-advisory
x_refsource_GENTOO
DSA-1511
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:5431
vdb-entry
signature
x_refsource_OVAL
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0043
x_refsource_CONFIRM
RHSA-2008:0090
vendor-advisory
x_refsource_REDHAT
29333
third-party-advisory
x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-2199
x_refsource_CONFIRM
USN-591-1
vendor-advisory
x_refsource_UBUNTU
MDVSA-2008:026
vendor-advisory
x_refsource_MANDRIVA
231641
vendor-advisory
x_refsource_SUNALERT
ADV-2008-1375
vdb-entry
x_refsource_VUPEN
29194
third-party-advisory
x_refsource_SECUNIA
30179
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-1076
vendor-advisory
x_refsource_FEDORA
http://www.openoffice.org/security/cves/CVE-2007-5745.html
x_refsource_CONFIRM
28575
third-party-advisory
x_refsource_SECUNIA
20080206 rPSA-2008-0043-1 icu
mailing-list
x_refsource_BUGTRAQ
[icu-support] 20080122 ICU Patch for bugs in Regular Expressions
mailing-list
x_refsource_MLIST
28669
third-party-advisory
x_refsource_SECUNIA
ADV-2008-0807
vdb-entry
x_refsource_VUPEN
29910
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-1036
vendor-advisory
x_refsource_FEDORA
ADV-2008-0282
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now