Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-2059HistoryAug 12, 2015 - 2:59 p.m.
CVE-2015-2059
2015-08-1214:59:00
Debian Security Bug Tracker
security-tracker.debian.org
6
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.8%
The stringprep_utf8_to_ucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libidn | < 1.31-1 | libidn_1.31-1_all.deb |
| Debian | 11 | all | libidn | < 1.31-1 | libidn_1.31-1_all.deb |
| Debian | 10 | all | libidn | < 1.31-1 | libidn_1.31-1_all.deb |
| Debian | 999 | all | libidn | < 1.31-1 | libidn_1.31-1_all.deb |
| Debian | 13 | all | libidn | < 1.31-1 | libidn_1.31-1_all.deb |
Related
prion
prion
Out-of-bounds
2015-08-12 14:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: libidn-1.31-1.fc21
2015-07-29 01:54:32
[SECURITY] Fedora 22 Update: libidn-1.31-1.fc22
2015-07-29 01:56:24
nessus
nessus
EulerOS Virtualization 3.0.1.0 : libidn (EulerOS-SA-2019-1454)
2019-05-14 00:00:00
Fedora 22 : libidn-1.31-1.fc22 (2015-11562)
2015-07-29 00:00:00
Debian DLA-476-1 : libidn security update
2016-05-18 00:00:00
osv
osv
libidn - security update
2015-08-16 00:00:00
libidn - security update
2016-05-17 00:00:00
debian
debian
[SECURITY] [DLA 476-1] libidn security update
2016-05-17 22:43:24
[SECURITY] [DLA 277-1] libidn security update
2015-07-20 01:09:29
[SECURITY] [DLA 291-1] libidn security update
2015-08-16 10:08:00
openvas
openvas
Debian Security Advisory DSA 3578-1 (libidn - security update)
2016-05-14 00:00:00
Fedora Update for prosody FEDORA-2015-6428
2015-05-11 00:00:00
Debian: Security Advisory (DLA-277-1)
2023-03-08 00:00:00
mageia
mageia
Updated libidn packages fix CVE-2015-2059
2015-09-08 20:55:59
veracode
veracode
Information Disclosure
2019-06-12 05:13:17
ubuntucve
ubuntucve
CVE-2015-2059
2015-08-12 00:00:00
cve
cve
CVE-2015-2059
2015-08-12 14:59:00
freebsd
freebsd
libidn -- out-of-bounds read issue with invalid UTF-8 input
2015-02-09 00:00:00
cloudfoundry
cloudfoundry
USN-3068-1 Libidn vulnerabilities | Cloud Foundry
2016-11-08 00:00:00
ubuntu
ubuntu
Libidn vulnerabilities
2016-08-24 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1873
2021-07-02 17:14:46
suse
suse
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
ibm
ibm
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.009 Low
EPSS
Percentile
82.8%
Related for DEBIANCVE:CVE-2015-2059