Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2015-8948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-boun...

7.5CVSS7.4AI score0.06721EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 5 : libidn (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libidn2: Integer overflow in punydecode.c/decodedigit CVE-2017-14062 - The stringpreputf8toucs4 function ...

9.8CVSS8.8AI score0.06721EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.5 views

SUSE CVE-2015-8948

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...

7.5CVSS6.7AI score0.06721EPSS
Exploits0References26
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2016-0269)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.06721EPSS
Exploits0References6
Rosalinux
Rosalinux
added 2021/07/02 5:14 p.m.26 views

Advisory ROSA-SA-2021-1873

Software: libidn 1.28 OS: Cobalt 7.9 CVE-ID: CVE-2015-2059 CVE-Crit: MEDIUM CVE-DESC: The stringpreputf8toucs4 function in libin prior to 1.31, used in jabberd2, allows context-sensitive attackers to read system memory and possibly exert other undefined influence via invalid UTF-8 characters in a...

7.5CVSS7.1AI score0.06721EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2016:2079-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.06721EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for libidn (EulerOS-SA-2019-2392)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.06721EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.35 views

EulerOS 2.0 SP3 : libidn (EulerOS-SA-2019-2608)

According to the versions of the libidn package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers...

7.5CVSS7.5AI score0.06721EPSS
Exploits0References3
Cloud Foundry
Cloud Foundry
added 2016/11/08 12:0 a.m.47 views

USN-3068-1 Libidn vulnerabilities | Cloud Foundry

USN-3068-1 Libidn vulnerabilities Medium Vendor Canonical Ubuntu, libidn Versions Affected Canonical Ubuntu 14.04 LTS Description Thijs Alkemade, Gustavo Grieco, Daniel Stenberg, and Nikos Mavrogiannopoulos discovered that Libidn incorrectly handled invalid UTF-8 characters. A remote attacker cou...

7.5CVSS7.2AI score0.06721EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/09/13 12:0 a.m.28 views

SUSE SLES11 Security Update : libidn (SUSE-SU-2016:2291-1)

This update for libidn fixes the following issues : - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input bsc990189 - CVE-2016-6261: Out-of-bounds stack read in idnatoascii4i bsc990190 - CVE-2016-6263: stringpreputf8nfkcnormalize reject invalid UTF-8 bsc990191 ...

7.5CVSS7.1AI score0.06721EPSS
Exploits0References15
NVD
NVD
added 2016/09/07 8:59 p.m.23 views

CVE-2016-6262

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948...

7.5CVSS7.3AI score0.06513EPSS
Exploits0References10
NVD
NVD
added 2016/09/07 8:59 p.m.22 views

CVE-2015-8948

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...

7.5CVSS7.2AI score0.06721EPSS
Exploits0References11
OSV
OSV
added 2016/09/07 8:59 p.m.9 views

CVE-2015-8948

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...

7.5CVSS7.2AI score
Exploits0References14
CVE
CVE
added 2016/09/07 8:0 p.m.148 views

CVE-2015-8948

CVE-2015-8948 : Affected software is GNU libidn; vulnerability arises from processing input where a zero byte is read as input, causing an out-of-bounds read that could reveal memory. This targets libidn versions before 1.33. Several connected advisories confirm the issue (e.g., BSA-2017-213 and ...

7.5CVSS7.1AI score0.06721EPSS
Exploits0References11Affected Software2
Cvelist
Cvelist
added 2016/09/07 8:0 p.m.27 views

CVE-2016-6262

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948...

7.3AI score0.06513EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2016/09/07 8:0 p.m.31 views

CVE-2016-6262

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948...

7.5CVSS7.6AI score0.06513EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2016/09/07 8:0 p.m.53 views

CVE-2015-8948

idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...

7.5CVSS7.4AI score0.06721EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/09/02 12:0 a.m.26 views

SUSE SLED12 / SLES12 Security Update : libidn (SUSE-SU-2016:2079-1)

This update for libidn fixes the following issues : - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input bsc990189 - CVE-2016-6261: Out-of-bounds stack read in idnatoascii4i bsc990190 - CVE-2016-6263: stringpreputf8nfkcnormalize reject invalid UTF-8 bsc990191 ...

7.5CVSS7.1AI score0.06721EPSS
Exploits0References15
Debian
Debian
added 2016/09/01 8:24 p.m.40 views

[SECURITY] [DSA 3658-1] libidn security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3658-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 01, 2016 https://www.debian.org/security/faq -...

7.5CVSS8.3AI score0.06721EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/25 12:0 a.m.27 views

Ubuntu 14.04 LTS / 16.04 LTS : Libidn vulnerabilities (USN-3068-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3068-1 advisory. Thijs Alkemade, Gustavo Grieco, Daniel Stenberg, and Nikos Mavrogiannopoulos discovered that Libidn incorrectly handled invalid UTF-8...

7.5CVSS7.5AI score0.06721EPSS
Exploits0References6
Rows per page
Query Builder