CVE-2017-15422
published 2018-08-28CVE-2017-15422: Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to…
PriorityP429medium6.5CVSS 3.0
AVNACLPRNUIRSUCNINAH
EPSS
2.48%
82.6th percentile
Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | itunes_12.7.2_for_windows | — | — |
| apple | macos_high_sierra_10.13.2_security_update_2017-002_sierra_and_security_update_20 | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | icu | < icu 57.1-9 (bookworm) | icu 57.1-9 (bookworm) |
| chrome | < 63.0.3239.84 | 63.0.3239.84 | |
| icu-project | international_components_for_unicode | < 60.1 | 60.1 |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv6.5MEDIUM
vendor_debian6.5MEDIUM
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
ICU vulnerability
vendor_ubuntu·2018-03-28
CVE-2017-15422 ICU vulnerability
Title: ICU vulnerability
Summary: ICU could be made to crash if it received specially crafted input.
It was discovered that ICU incorrectly handled certain calendars. If an
application using ICU processed crafted data, a remote attacker could
possibly cause it to crash, leading to a denial of service.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
chromium-browser: integer overflow in icu
vendor_redhat·2017-12-06·CVSS 6.5
CVE-2017-15422 [MEDIUM] chromium-browser: integer overflow in icu
chromium-browser: integer overflow in icu
Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Package: icu (Red Hat Enterprise Linux 6) - Will not fix
Package: icu (Red Hat Enterprise Linux 7) - Will not fix
Package: icu (Red Hat Enterprise Linux 8) - Not affected
Apple
CVE-2017-15422: macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan
vendor_apple·2017-12-06·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422: macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan
Apple Security Update: About the security content of macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan
Product: macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan
CVE: CVE-2017-15422
Component: ICU
Impact: An application may be able to read restricted memory
Description: An integer overflow was addressed through improved input validation.
Apple
CVE-2017-15422: iTunes 12.7.2 for Windows
vendor_apple·2017-12-06·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422: iTunes 12.7.2 for Windows
Apple Security Update: About the security content of iTunes 12.7.2 for Windows
Product: iTunes 12.7.2 for Windows
CVE: CVE-2017-15422
Component: ICU
Impact: An application may be able to read restricted memory
Description: An integer overflow was addressed through improved input validation.
Debian
CVE-2017-15422: icu - Integer overflow in international date handling in International Components for ...
vendor_debian·2017·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422: icu - Integer overflow in international date handling in International Components for ...
Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Scope: local
bookworm: resolved (fixed in 57.1-9)
bullseye: resolved (fixed in 57.1-9)
forky: resolved (fixed in 57.1-9)
sid: resolved (fixed in 57.1-9)
trixie: resolved (fixed in 57.1-9)
GHSA
GHSA-m4p7-r6qr-35pv: Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60
ghsa_unreviewed·2022-05-14
CVE-2017-15422 [MEDIUM] CWE-190 GHSA-m4p7-r6qr-35pv: Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60
Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
OSV
CVE-2017-15422: Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60
osv·2018-08-28·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422: Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60
Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
No detection rules found.
No public exploits indexed.
Bugzilla
Backport CVE-2017-15422 to ESR52
bugzilla·2018-03-29·CVSS 6.5
CVE-2017-15422 [MEDIUM] Backport CVE-2017-15422 to ESR52
Backport CVE-2017-15422 to ESR52
Today, I noticed that Ubuntu updated its copy of ICU 57 to include the fix for CVE-2017-15422. From what I can tell, this was an integer overflow bug which was fixed late last year:
https://ssl.icu-project.org/trac/changeset/40654
Fx59+ are already fixed via the ICU 60.1 update. However, ESR52 is using ICU 58.2 still and is vulnerable from what I can tell.
Discussion:
Might not be a bad idea to look for any other ICU security backports that might have landed since 58.2 was shipped too.
---
(In reply to Ryan VanderMeulen [:RyanVM] from comment #0)
> However, ESR52 is using ICU 58.2 still and is vulnerable from what I can tell.
Do we know any details about the severity of the vulnerability? For example can it be used for remote code execution etc. ?
Bugzilla
CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [epel-7]
bugzilla·2017-12-18·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [epel-7]
CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-7.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
Discussion:
Use the following template to for the 'fedpk
Bugzilla
CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [fedora-all]
bugzilla·2017-12-18·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [fedora-all]
CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versi
Bugzilla
CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [fedora-all]
bugzilla·2017-12-18·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [fedora-all]
CVE-2017-15422 mingw-icu: chromium-browser: integer overflow in icu [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versi
Bugzilla
CVE-2017-15422 icu: chromium-browser: integer overflow in icu [fedora-all]
bugzilla·2017-12-18·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422 icu: chromium-browser: integer overflow in icu [fedora-all]
CVE-2017-15422 icu: chromium-browser: integer overflow in icu [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of
Bugzilla
CVE-2017-15422 chromium-browser: integer overflow in icu
bugzilla·2017-12-07·CVSS 6.5
CVE-2017-15422 [MEDIUM] CVE-2017-15422 chromium-browser: integer overflow in icu
CVE-2017-15422 chromium-browser: integer overflow in icu
An integer overflow flaw was found in the ICU component of the Chromium browser.
Upstream bug(s):
https://code.google.com/p/chromium/issues/detail?id=774382
External References:
https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.html
Discussion:
Created chromium tracking bugs for this issue:
Affects: epel-7 [bug 1523143]
Affects: fedora-all [bug 1523145]
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 6 Supplementary
Via RHSA-2017:3401 https://access.redhat.com/errata/RHSA-2017:3401
---
Created icu tracking bugs for this issue:
Affects: fedora-all [bug 1526891]
Created mingw-icu tracking bugs for this issue:
Affects: epel-7 [bug 1526889]
---
Create
Bugzilla
CVE-2017-15407 CVE-2017-15408 CVE-2017-15409 CVE-2017-15410 CVE-2017-15411 CVE-2017-15412 CVE-2017-15413 CVE-2017-15415 CVE-2017-15416 CVE-2017-15417 CVE-2017-15418 CVE-2017-15419 CVE-2017-15420 CVE-2
bugzilla·2017-12-07·CVSS 8.8
CVE-2017-15407 [HIGH] CVE-2017-15407 CVE-2017-15408 CVE-2017-15409 CVE-2017-15410 CVE-2017-15411 CVE-2017-15412 CVE-2017-15413 CVE-2017-15415 CVE-2017-15416 CVE-2017-15417 CVE-2017-15418 CVE-2017-15419 CVE-2017-15420 CVE-2
CVE-2017-15407 CVE-2017-15408 CVE-2017-15409 CVE-2017-15410 CVE-2017-15411 CVE-2017-15412 CVE-2017-15413 CVE-2017-15415 CVE-2017-15416 CVE-2017-15417 CVE-2017-15418 CVE-2017-15419 CVE-2017-15420 CVE-2017-15422 ... chromium: various flaws [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-7.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-l
Bugzilla
CVE-2017-15407 CVE-2017-15408 CVE-2017-15409 CVE-2017-15410 CVE-2017-15411 CVE-2017-15412 CVE-2017-15413 CVE-2017-15415 CVE-2017-15416 CVE-2017-15417 CVE-2017-15418 CVE-2017-15419 CVE-2017-15420 CVE-2
bugzilla·2017-12-07·CVSS 8.8
CVE-2017-15407 [HIGH] CVE-2017-15407 CVE-2017-15408 CVE-2017-15409 CVE-2017-15410 CVE-2017-15411 CVE-2017-15412 CVE-2017-15413 CVE-2017-15415 CVE-2017-15416 CVE-2017-15417 CVE-2017-15418 CVE-2017-15419 CVE-2017-15420 CVE-2
CVE-2017-15407 CVE-2017-15408 CVE-2017-15409 CVE-2017-15410 CVE-2017-15411 CVE-2017-15412 CVE-2017-15413 CVE-2017-15415 CVE-2017-15416 CVE-2017-15417 CVE-2017-15418 CVE-2017-15419 CVE-2017-15420 CVE-2017-15422 ... chromium: various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the releva
https://access.redhat.com/errata/RHSA-2017:3401https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.htmlhttps://crbug.com/774382https://security.gentoo.org/glsa/201801-03https://usn.ubuntu.com/3610-1/https://www.debian.org/security/2018/dsa-4150https://access.redhat.com/errata/RHSA-2017:3401https://chromereleases.googleblog.com/2017/12/stable-channel-update-for-desktop.htmlhttps://crbug.com/774382https://security.gentoo.org/glsa/201801-03https://usn.ubuntu.com/3610-1/https://www.debian.org/security/2018/dsa-4150
2018-08-28
Published