CVE-2016-6261

Опубликовано: 20 июл. 2016

Источник: redhat

CVSS3: 3.7

CVSS2: 2.6

Описание

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	libidn	Will not fix
Red Hat Enterprise Linux 6	libidn	Will not fix
Red Hat Enterprise Linux 7	libidn	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1359134libidn: Out of bounds stack read in idna_to_ascii_4i

3.7 Low

CVSS3

2.6 Low

CVSS2

Связанные уязвимости

CVE-2016-6261

CVSS3: 7.5

ubuntu

больше 9 лет назад

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

CVE-2016-6261

CVSS3: 7.5

nvd

больше 9 лет назад

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

CVE-2016-6261

CVSS3: 7.5

debian

больше 9 лет назад

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allo ...

GHSA-hr7q-x7xm-q959

CVSS3: 7.5

github

больше 3 лет назад

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

openSUSE-SU-2016:2135-1

suse-cvrf

больше 9 лет назад

Security update for libidn

3.7 Low

CVSS3

2.6 Low

CVSS2