Common Vulnerabilities and Exposures assigned an identifier CVE-2012-5109 to the following vulnerability: The International Components for Unicode (ICU) functionality in Google Chrome before 22.0.1229.92 allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to a regular expression. References: [1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5109 [2] http://googlechromereleases.blogspot.com/2012/10/stable-channel-update.html [3] https://code.google.com/p/chromium/issues/detail?id=148692 (private)
Upstream patch: http://bugs.icu-project.org/trac/changeset/29356
This issue does not affect the version of icu package as shipped with Fedora 16 and Fedora 17.
Statement: Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.