• Status Closed
  • Percent Complete
  • Task Type Outdated package
  • Category core
  • Assigned To Jeff Haung (s8321414)
  • Operating System
  • Severity Critical
  • Priority Normal
  • Reported Version
  • Due in Version Undecided
  • Due Date Undecided
  • Votes 0
  • Private No
Attached to Project: Packages
Opened by gnastyle (gnastyle) - 2016-09-19
Last edited by Jeff Haung (s8321414) - 2017-10-07

FS#1712 - icu CVE-2016-7415

icu through 57.1 is affected.
Wait for next release.
Don't forget lib32-icu too.

This task does not depend on any other tasks.

Closed by  Jeff Haung (s8321414)
Saturday, 07 October 2017, 01:29 GMT
Reason for closing:  Fixed
Additional comments about closing:  Fixed
Neofytos Kolokotronis (tetris4)
Wednesday, 21 September 2016, 11:16 GMT
If we want to update to the latest version, backwards compatibility breaks, so this needs to be done as a group:

Required By : backintime boost-libs calibre calligra-kexi calligra-libs firefox-kde frogatto gptfdisk harfbuzz-icu hugin-tools ibus-qt lib32-icu
libreoffice-common libvisio libwebkit-gtk2 lyx mpd nodejs openttd php-intl postfix qt5-base quiterss r raptor subtitlecomposer
sword texlive-bin thunderbird-kde v8 wesnoth yaz
Fabian Kosmale (Inkane)
Wednesday, 21 September 2016, 11:23 GMT
Note that Qt (4) also needs to be rebuild, as it does dynamically load icu at runtime.