unicode-org/icu

unicode-org/icu

icu.unicode.org

Releases601

Frequency2 weeks 2 days

Last Release 3 months ago

Stars3.5K

The home of the ICU project source code.

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-21913 ↗	Sep 20, 2021Monday, 20 September 2021, 14:15	5.5 MEDIUM	4.3 MEDIUM
International Components for Unicode (ICU-20850) v66.1 was discovered to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp.
CVE-2020-10531 ↗	Mar 12, 2020Thursday, 12 March 2020, 19:15	8.8 HIGH	6.8 MEDIUM
An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.
CVE-2018-18928 ↗	Nov 4, 2018Sunday, 4 November 2018, 20:29	—	7.5 HIGH
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.