What is the severity of CVE-2014-7926?

CVE-2014-7926 is classified as a denial of service vulnerability that can lead to memory corruption.

How do I fix CVE-2014-7926?

To address CVE-2014-7926, upgrade to the latest version of the affected software packages that contain the necessary security patches.

What software is affected by CVE-2014-7926?

CVE-2014-7926 affects various software including Red Hat Enterprise Linux, openSUSE, Google Chrome, and ICU (International Components for Unicode).

Can CVE-2014-7926 be exploited remotely?

Yes, CVE-2014-7926 can be exploited by remote attackers through specially crafted regular expressions.

What impact does CVE-2014-7926 have?

Exploitation of CVE-2014-7926 can lead to denial of service, resulting in application crashes or unexpected behavior.

Vulnerability/
CVE-2014-7926

high

7.5

CWE

22/1/2015

6/8/2024

CVE-2014-7926

First published: Thu Jan 22 2015(Updated: 8 months ago)

The Regular Expressions package in International Components for Unicode (ICU) allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a zero-length quantifier.

Credit: cve-coordination@google.com

Affected Software	Affected Version	How to fix
Red Hat Enterprise Linux Desktop	=6.0
Red Hat Enterprise Linux Server Supplementary	=6.0
Red Hat Enterprise Linux Server Supplementary EUS	=6.6.z
Red Hat Enterprise Linux Workstation Supplementary	=6.0
openSUSE	=13.1
openSUSE	=13.2
Google Chrome	<=40.0.2214.85
Sun iPlanet Messaging Server	=7.0.5
Sun iPlanet Messaging Server	=8.0
ICU (International Components for Unicode)	<55.1
Ubuntu	=14.04
Ubuntu	=14.10

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-1073530

Frequently Asked Questions

What is the severity of CVE-2014-7926?
CVE-2014-7926 is classified as a denial of service vulnerability that can lead to memory corruption.
How do I fix CVE-2014-7926?
To address CVE-2014-7926, upgrade to the latest version of the affected software packages that contain the necessary security patches.
What software is affected by CVE-2014-7926?
CVE-2014-7926 affects various software including Red Hat Enterprise Linux, openSUSE, Google Chrome, and ICU (International Components for Unicode).
Can CVE-2014-7926 be exploited remotely?
Yes, CVE-2014-7926 can be exploited by remote attackers through specially crafted regular expressions.
What impact does CVE-2014-7926 have?
Exploitation of CVE-2014-7926 can lead to denial of service, resulting in application crashes or unexpected behavior.

agent/references
agent/type
agent/author
agent/severity
agent/weakness
agent/description
collector/ibm-support
source/IBM
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/redhat
canonical/red hat enterprise linux desktop
version/red hat enterprise linux desktop/6.0
canonical/red hat enterprise linux server supplementary
version/red hat enterprise linux server supplementary/6.0
canonical/red hat enterprise linux server supplementary eus
version/red hat enterprise linux server supplementary eus/6.6.z
canonical/red hat enterprise linux workstation supplementary
version/red hat enterprise linux workstation supplementary/6.0
vendor/opensuse
canonical/opensuse
version/opensuse/13.1
version/opensuse/13.2
vendor/google
canonical/google chrome
version/google chrome/40.0.2214.85
vendor/oracle
canonical/sun iplanet messaging server
version/sun iplanet messaging server/7.0.5
version/sun iplanet messaging server/8.0
vendor/icu-project
canonical/icu (international components for unicode)
vendor/canonical
canonical/ubuntu
version/ubuntu/14.04
version/ubuntu/14.10