CVE-2011-4599

Publication date

2012-06-21 15:00:00

Family

redhat

State

PUBLISHED

Description

Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) before 49.1 allows remote attackers to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization.