This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Gnu First view 2015-08-12
Product Libidn Last view 2016-09-07
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:gnu:libidn:1.30:*:*:*:*:*:*:* 5
cpe:2.3:a:gnu:libidn:1.32:*:*:*:*:*:*:* 4

Related : CVE

  Date Alert Description
7.5 2016-09-07 CVE-2016-6263

The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.

7.5 2016-09-07 CVE-2016-6262

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948.

7.5 2016-09-07 CVE-2016-6261

The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.

7.5 2016-09-07 CVE-2015-8948

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read.

7.5 2015-08-12 CVE-2015-2059

The stringprep_utf8_to_ucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read.

CWE : Common Weakness Enumeration

%idName
80% (4) CWE-125 Out-of-bounds Read
20% (1) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

Nessus® Vulnerability Scanner

id Description
2016-11-15 Name: The remote Fedora host is missing a security update.
File: fedora_2016-f99c0a8b69.nasl - Type: ACT_GATHER_INFO
2016-09-13 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-2291-1.nasl - Type: ACT_GATHER_INFO
2016-09-12 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-1067.nasl - Type: ACT_GATHER_INFO
2016-09-08 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-2226-1.nasl - Type: ACT_GATHER_INFO
2016-09-02 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2016-2079-1.nasl - Type: ACT_GATHER_INFO
2016-09-02 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3658.nasl - Type: ACT_GATHER_INFO
2016-08-25 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-3068-1.nasl - Type: ACT_GATHER_INFO
2016-08-24 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-1014.nasl - Type: ACT_GATHER_INFO
2016-08-09 Name: The remote Fedora host is missing a security update.
File: fedora_2016-610fe5f5f8.nasl - Type: ACT_GATHER_INFO
2016-08-05 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-925.nasl - Type: ACT_GATHER_INFO
2016-08-03 Name: The remote Debian host is missing a security update.
File: debian_DLA-582.nasl - Type: ACT_GATHER_INFO
2016-08-01 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_cb5189eb572f11e6b334002590263bf5.nasl - Type: ACT_GATHER_INFO
2016-07-29 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2016-210-01.nasl - Type: ACT_GATHER_INFO
2016-07-25 Name: The remote Fedora host is missing a security update.
File: fedora_2016-42514bee97.nasl - Type: ACT_GATHER_INFO
2016-05-18 Name: The remote Debian host is missing a security update.
File: debian_DLA-476.nasl - Type: ACT_GATHER_INFO
2016-05-16 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3578.nasl - Type: ACT_GATHER_INFO
2015-08-17 Name: The remote Debian host is missing a security update.
File: debian_DLA-291.nasl - Type: ACT_GATHER_INFO
2015-07-29 Name: The remote Fedora host is missing a security update.
File: fedora_2015-11621.nasl - Type: ACT_GATHER_INFO
2015-07-29 Name: The remote Fedora host is missing a security update.
File: fedora_2015-11562.nasl - Type: ACT_GATHER_INFO
2015-07-24 Name: The remote FreeBSD host is missing a security-related update.
File: freebsd_pkg_4caf01e230e611e5a4a5002590263bf5.nasl - Type: ACT_GATHER_INFO
2015-07-20 Name: The remote Debian host is missing a security update.
File: debian_DLA-277.nasl - Type: ACT_GATHER_INFO
2015-07-20 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2015-497.nasl - Type: ACT_GATHER_INFO