The patched version is ICU4C version 55.1 - and multiple vendors who have embedded this library (FreeBsd, Adobe, for example) are also affected so those products should also be updated. The post has a list of affected vendors..
Security Forum
Share security advice on our community forum. Ask questions, post news and best practices.
5
ICU Project ICU4C library contains overflow vulnerabilities - apply updates
Attacker may provide input that triggers vulnerabilities, leading to remote code execution and DoS
Post by: Ravi Tavroula
Tweet
Upvoted By:
Thank you for posting a comment.
The patched version is ICU4C version 55.1 - and multiple vendors who have embedded this library (FreeBsd, Adobe, for example) are also affected so those products should also be updated. The post has a list of affected vendors..
Security Forum