Notifications pour un CVE
Restez informé de toutes modifications pour un CVE spécifique.
Descriptions du CVE
The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) before 55.1 does not properly track directionally isolated pieces of text, which allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text.
Informations du CVE
Faiblesses connexes
| Nom de la faiblesse | Source | |
|---|---|---|
| Improper Restriction of Operations within the Bounds of a Memory Buffer The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data. |
Métriques
| Métriques | Score | Gravité | CVSS Vecteur | Source |
|---|---|---|---|---|
| V2 | 7.5 | AV:N/AC:L/Au:N/C:P/I:P/A:P | nvd@nist.gov |
EPSS
EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.
Score EPSS
Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.
Percentile EPSS
Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.
Informations sur l'Exploit
Exploit Database EDB-ID : 43887
Date de publication : 2015-06-09 22h00 +00:00
Auteur : Pedro Ribeiro
EDB Vérifié : No
>> Heap overflow and integer overflow in ICU library (v52 to v54)
>> Discovered by Pedro Ribeiro (pedrib@gmail.com), Agile Information Security
=================================================================================
Disclosure: 04/05/2015 / Last updated: 07/05/2015
>> Background on the affected products:
ICU is a mature, widely used set of C/C++ and Java libraries providing Unicode and Globalization support for software applications. ICU is widely portable and gives applications the same results on all platforms and between C/C++ and Java software.
>> Summary:
While fuzzing LibreOffice an integer overflow and a heap overflow were found in the ICU library. This library is used by LibreOffice and hundreds of other software packages.
Proof of concept files can be downloaded from [1]. These files have been tested with LibreOffice 4.3.3.2 and LibreOffice 4.4.0-beta2 and ICU 52.
Note that at this point in time it is unknown whether these vulnerabilities are exploitable.
Thanks to CERT [2] for helping disclose these vulnerabilities.
>> Technical details:
#1
Vulnerability: Heap overflow
CVE-2014-8146
The code to blame is the following (from ubidi.c:2148 in ICU 52):
dirProp=dirProps[limit-1];
if((dirProp==LRI || dirProp==RLI) && limit<pBiDi->length) {
pBiDi->isolateCount++;
pBiDi->isolates[pBiDi->isolateCount].stateImp=stateImp;
pBiDi->isolates[pBiDi->isolateCount].state=levState.state;
pBiDi->isolates[pBiDi->isolateCount].start1=start1;
}
else
processPropertySeq(pBiDi, &levState, eor, limit, limit);
Under certain conditions isolateCount is incremented too many times, which results in several out of bounds writes. See [1] for a more detailed analysis.
#2
Vulnerability: Integer overflow
CVE-2014-8147
The overflow is on the resolveImplicitLevels function (ubidi.c:2248):
pBiDi->isolates[pBiDi->isolateCount].state=levState.state;
pBiDi->isolates[].state is a int16, while levState.state is a int32.
The overflow causes an error when performing a malloc on pBiDi->insertPoints->points because insertPoints is adjacent in memory to isolates[].
The Isolate struct is defined in ubidiimp.h:184
typedef struct Isolate {
int32_t startON;
int32_t start1;
int16_t stateImp;
int16_t state;
} Isolate;
LevState is defined in ubidi.c:1748
typedef struct {
const ImpTab * pImpTab; /* level table pointer */
const ImpAct * pImpAct; /* action map array */
int32_t startON; /* start of ON sequence */
int32_t startL2EN; /* start of level 2 sequence */
int32_t lastStrongRTL; /* index of last found R or AL */
int32_t state; /* current state */
int32_t runStart; /* start position of the run */
UBiDiLevel runLevel; /* run level before implicit solving */
} LevState;
>> Fix:
All ICU releases between 52 and 54 are affected. Upgrade to ICU 55.1 to fix these vulnerabilities.
There are many other software packages which embed the ICU code and will need to be updated.
Patches that fix these vulnerabilities can be obtained from the ICU project in [3] and [4].
>> References:
[1] https://github.com/pedrib/PoC/raw/master/generic/i-c-u-fail.7z (EDB Mirror: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/43887.zip)
[2] https://www.kb.cert.org/vuls/id/602540
[3] http://bugs.icu-project.org/trac/changeset/37080
[4] http://bugs.icu-project.org/trac/changeset/37162
================
Agile Information Security Limited
http://www.agileinfosec.co.uk/
>> Enabling secure digital business >>
Products Mentioned
Configuraton 0
Apple>>Itunes >> Version To (including) 12.1.3
- Apple>>Itunes >> Version - (Open CPE detail)
- Apple>>Itunes >> Version 4.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.1.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.1.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.1.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.2.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.2.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.2.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.5 (Open CPE detail)
- Apple>>Itunes >> Version 4.5 (Open CPE detail)
- Apple>>Itunes >> Version 4.5.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.5.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.5.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.6 (Open CPE detail)
- Apple>>Itunes >> Version 4.6 (Open CPE detail)
- Apple>>Itunes >> Version 4.6.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.6.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.6.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.7 (Open CPE detail)
- Apple>>Itunes >> Version 4.7 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 4.7.2 (Open CPE detail)
- Apple>>Itunes >> Version 4.8.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.8.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.8.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.9.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.9.0 (Open CPE detail)
- Apple>>Itunes >> Version 4.9.0 (Open CPE detail)
- Apple>>Itunes >> Version 5.0 (Open CPE detail)
- Apple>>Itunes >> Version 5.0 (Open CPE detail)
- Apple>>Itunes >> Version 5.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 5.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 5.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 5.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 5.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 5.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.3 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.3 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.3 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.4 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.4 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.4 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.4 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.5 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.5 (Open CPE detail)
- Apple>>Itunes >> Version 6.0.5 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.1.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.1.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.1.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.2.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.2.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.2.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.3.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.4 (Open CPE detail)
- Apple>>Itunes >> Version 7.4 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.3 (Open CPE detail)
- Apple>>Itunes >> Version 7.4.3 (Open CPE detail)
- Apple>>Itunes >> Version 7.5 (Open CPE detail)
- Apple>>Itunes >> Version 7.5 (Open CPE detail)
- Apple>>Itunes >> Version 7.5.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.5.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.5.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.6 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.6.2 (Open CPE detail)
- Apple>>Itunes >> Version 7.7 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.0 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 7.7.1 (Open CPE detail)
- Apple>>Itunes >> Version 8.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 8.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 8.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 8.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 8.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 8.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 8.1 (Open CPE detail)
- Apple>>Itunes >> Version 9.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 9.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 9.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 9.0.3 (Open CPE detail)
- Apple>>Itunes >> Version 9.1 (Open CPE detail)
- Apple>>Itunes >> Version 9.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 9.2 (Open CPE detail)
- Apple>>Itunes >> Version 9.2.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.0 (Open CPE detail)
- Apple>>Itunes >> Version 10.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.1.1.4 (Open CPE detail)
- Apple>>Itunes >> Version 10.1.2 (Open CPE detail)
- Apple>>Itunes >> Version 10.2 (Open CPE detail)
- Apple>>Itunes >> Version 10.2.2.12 (Open CPE detail)
- Apple>>Itunes >> Version 10.3 (Open CPE detail)
- Apple>>Itunes >> Version 10.3.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.4 (Open CPE detail)
- Apple>>Itunes >> Version 10.4.0.80 (Open CPE detail)
- Apple>>Itunes >> Version 10.4.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.4.1.10 (Open CPE detail)
- Apple>>Itunes >> Version 10.5 (Open CPE detail)
- Apple>>Itunes >> Version 10.5.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.5.1.42 (Open CPE detail)
- Apple>>Itunes >> Version 10.5.2 (Open CPE detail)
- Apple>>Itunes >> Version 10.5.3 (Open CPE detail)
- Apple>>Itunes >> Version 10.6 (Open CPE detail)
- Apple>>Itunes >> Version 10.6.1 (Open CPE detail)
- Apple>>Itunes >> Version 10.6.3 (Open CPE detail)
- Apple>>Itunes >> Version 10.7 (Open CPE detail)
- Apple>>Itunes >> Version 11.0 (Open CPE detail)
- Apple>>Itunes >> Version 11.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 11.0.2 (Open CPE detail)
- Apple>>Itunes >> Version 11.0.3 (Open CPE detail)
- Apple>>Itunes >> Version 11.0.4 (Open CPE detail)
- Apple>>Itunes >> Version 11.0.5 (Open CPE detail)
- Apple>>Itunes >> Version 11.1 (Open CPE detail)
- Apple>>Itunes >> Version 11.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 11.1.2 (Open CPE detail)
- Apple>>Itunes >> Version 11.1.3 (Open CPE detail)
- Apple>>Itunes >> Version 11.1.4 (Open CPE detail)
- Apple>>Itunes >> Version 11.1.5 (Open CPE detail)
- Apple>>Itunes >> Version 11.2 (Open CPE detail)
- Apple>>Itunes >> Version 11.2.1 (Open CPE detail)
- Apple>>Itunes >> Version 12.0 (Open CPE detail)
- Apple>>Itunes >> Version 12.0.0 (Open CPE detail)
- Apple>>Itunes >> Version 12.0.1 (Open CPE detail)
- Apple>>Itunes >> Version 12.0.4 (Open CPE detail)
- Apple>>Itunes >> Version 12.1 (Open CPE detail)
- Apple>>Itunes >> Version 12.1.1 (Open CPE detail)
- Apple>>Itunes >> Version 12.1.2 (Open CPE detail)
- Apple>>Itunes >> Version 12.1.3 (Open CPE detail)
- Apple>>Itunes >> Version 12.1.3 (Open CPE detail)
Apple>>Iphone_os >> Version To (including) 8.2
- Apple>>Iphone_os >> Version - (Open CPE detail)
- Apple>>Iphone_os >> Version - (Open CPE detail)
- Apple>>Iphone_os >> Version - (Open CPE detail)
- Apple>>Iphone_os >> Version - (Open CPE detail)
- Apple>>Iphone_os >> Version 1.0.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.0.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.4 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 1.1.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 2.2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 3.2.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.6 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.7 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.8 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.9 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.2.10 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.4 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 4.3.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 5.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.1.4 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.1.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 6.1.6 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0.4 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0.5 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.0.6 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 7.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.0 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.0.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.0.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.1.1 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.1.2 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.1.3 (Open CPE detail)
- Apple>>Iphone_os >> Version 8.2 (Open CPE detail)
Apple>>Mac_os_x >> Version To (including) 10.10.4
- Apple>>Mac_os_x >> Version - (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.0.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.0.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.0.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.0.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.0.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.1.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.6 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.7 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.2.8 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.6 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.7 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.8 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.3.9 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.6 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.7 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.8 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.9 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.10 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.4.11 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.6 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.7 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.5.8 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.6 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.7 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.6.8 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.7.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.7.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.7.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.7.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.7.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.7.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.8.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9.4 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.9.5 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.10.0 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.10.1 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.10.2 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.10.3 (Open CPE detail)
- Apple>>Mac_os_x >> Version 10.10.4 (Open CPE detail)
Apple>>Watchos >> Version To (including) 1.0.1
- Apple>>Watchos >> Version - (Open CPE detail)
- Apple>>Watchos >> Version 1.0 (Open CPE detail)
- Apple>>Watchos >> Version 1.0.1 (Open CPE detail)
Configuraton 0
Icu-project>>International_components_for_unicode >> Version To (excluding) 55.1
- Icu-project>>International_components_for_unicode >> Version 1.4 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.4.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.4.1.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.4.1.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.4.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.5 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.6 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.7 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.8 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 1.8.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.0 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.0.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.0.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.4 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.6 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.6.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.6.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 2.8 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.0 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.2.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.4 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.4.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.6 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.8 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 3.8.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.0 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.0.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.2.0.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.4.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.4.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.4.2.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.6 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.6.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.8 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.8.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 4.8.1.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 49.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 49.1.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 49.1.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 50.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 50.1.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 50.1.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 50.1.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 50.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 51.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 51.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 51.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 51.3 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 52.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 52.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 52.1.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 52.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 53.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 53.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 53.2 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 54.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 54.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 54.1.1 (Open CPE detail)
- Icu-project>>International_components_for_unicode >> Version 54.2 (Open CPE detail)
Références
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
Tags : vendor-advisory, x_refsource_APPLE
Tags : vendor-advisory, x_refsource_APPLE
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
http://lists.apple.com/archives/security-announce/2015/Sep/msg00005.html
Tags : vendor-advisory, x_refsource_APPLE
Tags : vendor-advisory, x_refsource_APPLE
http://lists.apple.com/archives/security-announce/2015/Sep/msg00003.html
Tags : vendor-advisory, x_refsource_APPLE
Tags : vendor-advisory, x_refsource_APPLE
http://lists.apple.com/archives/security-announce/2015/Sep/msg00001.html
Tags : vendor-advisory, x_refsource_APPLE
Tags : vendor-advisory, x_refsource_APPLE
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html
Tags : x_refsource_MISC
Tags : x_refsource_MISC
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC)
sont maintenues par MITRE Corporation, et les informations sur les configurations
logicielles et matérielles (CPE) proviennent du NVD.