MGASA-2016-0404
Advisory lineage Upstream: 2 Downstream: 0
Upstream
Published: 27 Nov 2016, 12:34
Last modified:16 Apr 2026, 06:22
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
27 Nov 2016, 12:34
Published
Vulnerability first disclosed
16 Apr 2026, 06:22
Last Modified
Vulnerability information updated
Description
Updated icu packages fix security vulnerability Stack overflow in ures_getByKeyWithFallback() in ICU before 54.1 could lead to a crash (CVE-2014-9911). It was found that a big locale string causes a stack based overflow inside libicu in locid.cpp (CVE-2016-7415)
Affected Systems
- mageia•icu
< 53.1-12.6.mga5