Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2025-5222

High

7/10

Summary

A Stack Buffer Overflow was found in International Components for Unicode (ICU). While running the genrb binary, the "subtag" struct overflowed in the "SRBRoot::addTag" function. This issue may lead to memory corruption and local arbitrary code execution. This issue affects versions prior to release-77-rc.

Attack Complexity: HIGH
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References

Advisory
Issue
Issue
Pull request
Release Note
Mail Thread

Advisory Timeline

Published May 27, 2025

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2025-5222

Summary

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS