Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-6263

Опубликовано: 07 сент. 2016
Источник: debian

Описание

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libidnfixed1.33-1package

Примечания

  • https://lists.gnu.org/archive/html/help-libidn/2016-07/msg00009.html

  • Test / Fix: http://git.savannah.gnu.org/cgit/libidn.git/commit/?id=1fbee57ef3c72db2206dd87e4162108b2f425555 (libidn-1-33)

  • https://www.openwall.com/lists/oss-security/2016/07/20/6

Связанные уязвимости

ubuntu логотип

CVE-2016-6263

CVSS3: 7.5
ubuntu
больше 9 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

redhat логотип

CVE-2016-6263

CVSS3: 3.7
redhat
около 10 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

nvd логотип

CVE-2016-6263

CVSS3: 7.5
nvd
больше 9 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

github логотип

GHSA-4q6w-2734-9q8x

CVSS3: 7.5
github
больше 3 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

suse-cvrf логотип

openSUSE-SU-2016:2135-1

suse-cvrf
больше 9 лет назад

Security update for libidn