GNU Libidn 1.32

CPE Details

GNU Libidn 1.32
gnu
libidn
1.32
2016-09-09
16h42 +00:00
2016-09-09
16h42 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:gnu:libidn:1.32:*:*:*:*:*:*:*

Informations

Vendor

gnu

Product

libidn

Version

1.32

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2015-8948 2016-09-07 18h00 +00:00 idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read.
7.5
High
CVE-2016-6261 2016-09-07 18h00 +00:00 The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.
7.5
High
CVE-2016-6262 2016-09-07 18h00 +00:00 idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948.
7.5
High
CVE-2016-6263 2016-09-07 18h00 +00:00 The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.
7.5
High