GHSA-4q6w-2734-9q8x

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

Ссылки

EPSS

Процентиль: 88%

0.03692

Низкий

7.5 High

CVSS3

CVE ID

CVE-2016-6263

Дефекты

CWE-125

Связанные уязвимости

CVE-2016-6263

CVSS3: 7.5

ubuntu

больше 9 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

CVE-2016-6263

CVSS3: 3.7

redhat

около 10 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

CVE-2016-6263

CVSS3: 7.5

nvd

больше 9 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

CVE-2016-6263

CVSS3: 7.5

debian

больше 9 лет назад

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn be ...

openSUSE-SU-2016:2135-1

suse-cvrf

больше 9 лет назад

Security update for libidn

EPSS

Процентиль: 88%

0.03692

Низкий

7.5 High

CVSS3

CVE ID

CVE-2016-6263

Дефекты

CWE-125