vulnerability

Ubuntu: (Multiple Advisories) (CVE-2014-9911): ICU vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Jan 4, 2017	Mar 14, 2017	Aug 18, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Jan 4, 2017

Added

Mar 14, 2017

Modified

Aug 18, 2025

Description

It was discovered that ICU incorrectly handled certain memory operations
when processing data. If an application using ICU processed crafted data,
a remote attacker could possibly cause it to crash or potentially execute
arbitrary code with the privileges of the user invoking the program.

Solutions

ubuntu-upgrade-libicu48ubuntu-upgrade-libicu52ubuntu-upgrade-libicu55ubuntu-upgrade-libicu57

References

CVE-2014-9911
https://attackerkb.com/topics/CVE-2014-9911
CWE-119
DEBIAN-DLA-744-1
DEBIAN-DSA-3725
NVD-CVE-2014-9911
UBUNTU-USN-2784-1
UBUNTU-USN-2827-1
UBUNTU-USN-2884-1
UBUNTU-USN-2885-1
UBUNTU-USN-3227-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today