This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Gnu First view 2016-09-07
Product Libidn Last view 2016-09-07
Version 1.32 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:gnu:libidn

Activity : Overall

Related : CVE

  Date Alert Description
7.5 2016-09-07 CVE-2016-6263

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

7.5 2016-09-07 CVE-2016-6262

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948.

7.5 2016-09-07 CVE-2016-6261

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

7.5 2016-09-07 CVE-2015-8948

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read.

CWE : Common Weakness Enumeration

%idName
100% (4) CWE-125 Out-of-bounds Read

Nessus® Vulnerability Scanner

id Description
2016-11-15 Name: The remote Fedora host is missing a security update.
File: fedora_2016-f99c0a8b69.nasl - Type: ACT_GATHER_INFO
2016-09-13 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-2291-1.nasl - Type: ACT_GATHER_INFO
2016-09-02 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3658.nasl - Type: ACT_GATHER_INFO
2016-09-02 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-2079-1.nasl - Type: ACT_GATHER_INFO
2016-08-25 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-3068-1.nasl - Type: ACT_GATHER_INFO
2016-08-24 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-1014.nasl - Type: ACT_GATHER_INFO
2016-08-09 Name: The remote Fedora host is missing a security update.
File: fedora_2016-610fe5f5f8.nasl - Type: ACT_GATHER_INFO
2016-08-05 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-925.nasl - Type: ACT_GATHER_INFO
2016-08-03 Name: The remote Debian host is missing a security update.
File: debian_DLA-582.nasl - Type: ACT_GATHER_INFO
2016-08-01 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_cb5189eb572f11e6b334002590263bf5.nasl - Type: ACT_GATHER_INFO
2016-07-29 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2016-210-01.nasl - Type: ACT_GATHER_INFO
2016-07-25 Name: The remote Fedora host is missing a security update.
File: fedora_2016-42514bee97.nasl - Type: ACT_GATHER_INFO