Wind River Support Network

HomeDefectsLIN1021-15959
Fixed

LIN1021-15959 : Security Advisory - icu - CVE-2025-5222

Created: May 27, 2025    Updated: Nov 27, 2025
Resolved Date: Nov 27, 2025
Found In Version: 10.21.20.1
Fix Version: 10.21.20.26
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

A stack buffer overflow was found in Internationl components for unicode (ICU ). While running the genrb binary, the 'subtag' struct overflowed at the SRBRoot::addTag function. This issue may lead to memory corruption and local arbitrary code execution.

CREATE(Triage):(User=admin) CVE-2025-5222 (https://nvd.nist.gov/vuln/detail/CVE-2025-5222)

CVEs

  • Linkedin
  • Facebook
  • Twitter
  • Youtube