Test ID:	1.3.6.1.4.1.25623.1.0.840881
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-1348-1)
Summary:	The remote host is missing an update for the 'icu' package(s) announced via the USN-1348-1 advisory.
Description:	Summary: The remote host is missing an update for the 'icu' package(s) announced via the USN-1348-1 advisory. Vulnerability Insight: It was discovered that ICU did not properly handle invalid locale data during Unicode conversion. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program. Affected Software/OS: 'icu' package(s) on Ubuntu 10.04, Ubuntu 10.10, Ubuntu 11.04, Ubuntu 11.10. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4599 47146 http://secunia.com/advisories/47146 47227 http://secunia.com/advisories/47227 47674 http://secunia.com/advisories/47674 47714 http://secunia.com/advisories/47714 47775 http://secunia.com/advisories/47775 51006 http://www.securityfocus.com/bid/51006 77698 http://www.osvdb.org/77698 APPLE-SA-2012-09-19-1 http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html APPLE-SA-2012-09-19-2 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html DSA-2397 http://www.debian.org/security/2012/dsa-2397 MDVSA-2011:194 http://www.mandriva.com/security/advisories?name=MDVSA-2011:194 RHSA-2011:1815 http://rhn.redhat.com/errata/RHSA-2011-1815.html USN-1348-1 http://ubuntu.com/usn/usn-1348-1 [oss-security] 20111209 CVE Request: icu out of bounds access http://www.openwall.com/lists/oss-security/2011/12/09/2 [oss-security] 20111209 Re: CVE Request: icu out of bounds access http://www.openwall.com/lists/oss-security/2011/12/09/5 http://bugs.icu-project.org/trac/ticket/8984 http://code.google.com/p/chromium/issues/detail?id=106441 http://support.apple.com/kb/HT5501 http://support.apple.com/kb/HT5503 icu-canonicalize-bo(71726) https://exchange.xforce.ibmcloud.com/vulnerabilities/71726 openSUSE-SU-2012:0100 http://lists.opensuse.org/opensuse-updates/2012-01/msg00035.html
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.