CVE-2020-21913
Published: 09/20/2021 14:15:08
International Components for Unicode (ICU-20850) v66.1 was discovered to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp.
MEDIUM
CVSS v3: 5.5
CVSS v3: 5.5
Status
| DocFilters Release | Package | State | Justification | Comment |
|---|---|---|---|---|
| 25.1 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 24.4 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 24.4.0 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 24.3 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 24.2.1 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 24.2 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 24.1 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 23.3 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 23.2.1 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 23.2 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 23.1 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 22.4 | international_components_for_unicode (58.1) | Not Affected | Code Not Present | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. |
| 22.3 | international_components_for_unicode (58.1) | Needs Triage | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. | |
| 22.2 | international_components_for_unicode (58.1) | Needs Triage | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. | |
| 22.1 | international_components_for_unicode (58.1) | Needs Triage | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. | |
| 21.11.1 | international_components_for_unicode (58.1) | Needs Triage | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. | |
| 21.11 | international_components_for_unicode (58.1) | Needs Triage | vulnerability is in build tool (pkgdata.cpp), which is not used by DF. | |
| 21.8.1 | international_components_for_unicode (58.1) | Needs Triage | ||
| 21.8 | international_components_for_unicode (58.1) | Needs Triage | ||
| 21.5.1 | international_components_for_unicode (58.1) | Needs Triage | ||
| 21.5.0 | international_components_for_unicode (58.1) | Needs Triage | ||
| 21.2.0 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.20 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.19.3667 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.18.3599 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.17 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.16.3445 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.15.3368 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.14.3263 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.13.3179 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.12.3054 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.11.3040 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.11.2990 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.10.2934 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.9.2878 | international_components_for_unicode (58.1) | Needs Triage | ||
| 11.4.8.2822 | international_components_for_unicode (58.1) | Needs Triage |
Severity score breakdown
Attack Complexity
LOW
Attack Vector
LOCAL
Availability Impact
HIGH
Base Score
5.5
Base Severity
MEDIUM
Confidentiality Impact
NONE
Integrity Impact
NONE
Privileges Required
NONE
Scope
UNCHANGED
User Interaction
REQUIRED
Vector String
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Version
3.1