Debian Security Advisory

DLA-381-1 icu -- LTS security update

Date Reported:
11 Jan 2016
Affected Packages:
icu
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CVE-2015-2632.
More information:

A vulnerability was found in ICU, a set of libraries that provides Unicode and internationalization support. Integer overflows in the ICU layout engine made it possible to disclose information.

For Debian 6 Squeeze, this problem has been fixed in icu version 4.4.1-8+squeeze5. We recommend you to upgrade your icu packages.