Linux Distros Unpatched Vulnerability : CVE-2016-6261

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The idnatoascii4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via ...

RHEL 5 : libidn (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libidn: Out-of-bounds read when reading zero byte as input CVE-2016-6262 - The idnatoascii4i function in...

RHEL 7 : libidn (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libidn: Out-of-bounds read when reading zero byte as input CVE-2016-6262 - The idnatoascii4i function in...

K23412152: libidn vulnerability CVE-2016-6261

Security Advisory Description The idnatoascii4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via 64 bytes of input. CVE-2016-6261 Impact This vulnerability may allow attackers to cause a denial of service...

Mageia: Security Advisory (MGASA-2016-0269)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Advisory ROSA-SA-2021-1873

Software: libidn 1.28 OS: Cobalt 7.9 CVE-ID: CVE-2015-2059 CVE-Crit: MEDIUM CVE-DESC: The stringpreputf8toucs4 function in libin prior to 1.31, used in jabberd2, allows context-sensitive attackers to read system memory and possibly exert other undefined influence via invalid UTF-8 characters in a...

SUSE: Security Advisory (SUSE-SU-2016:2079-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP2 : libidn (EulerOS-SA-2019-1851)

According to the version of the libidn package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The idnatoascii4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read an...

Security fix for the ALT Linux 9 package glibc version 6:2.26.9000.0.1248.407552c-alt1

Jan. 30, 2018 Dmitry V. Levin 6:2.26.9000.0.1248.407552c-alt1 - Updated to glibc-2.26.9000-1248-g407552c closes: 26977. - Switched IDNA implementation to libidn2 by Florian Weimer; fixes: CVE-2016-6261, CVE-2016-6263, CVE-2017-14062...

USN-3068-1 Libidn vulnerabilities | Cloud Foundry

USN-3068-1 Libidn vulnerabilities Medium Vendor Canonical Ubuntu, libidn Versions Affected Canonical Ubuntu 14.04 LTS Description Thijs Alkemade, Gustavo Grieco, Daniel Stenberg, and Nikos Mavrogiannopoulos discovered that Libidn incorrectly handled invalid UTF-8 characters. A remote attacker cou...

SUSE SLES11 Security Update : libidn (SUSE-SU-2016:2291-1)

This update for libidn fixes the following issues : - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input bsc990189 - CVE-2016-6261: Out-of-bounds stack read in idnatoascii4i bsc990190 - CVE-2016-6263: stringpreputf8nfkcnormalize reject invalid UTF-8 bsc990191 ...

SUSE-SU-2016:2291-1 Security update for libidn

This update for libidn fixes the following issues: - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input bsc990189 - CVE-2016-6261: Out-of-bounds stack read in idnatoascii4i bsc990190 - CVE-2016-6263: stringpreputf8nfkcnormalize reject invalid UTF-8 bsc990191 -...

CVE-2016-6261

The idnatoascii4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via 64 bytes of input...

CVE-2016-6261

CVE-2016-6261 affects libidn: the idna_to_ascii_4i function in lib/idna.c within libidn before 1.33 allows context-dependent attackers to cause a denial of service via 64 bytes of input (out-of-bounds read and crash). Connected advisories indicate patches/mitigations exist (upgrading libidn to a ...

CVE-2016-6261

The idnatoascii4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service out-of-bounds read and crash via 64 bytes of input...

SUSE SLED12 / SLES12 Security Update : libidn (SUSE-SU-2016:2079-1)

This update for libidn fixes the following issues : - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input bsc990189 - CVE-2016-6261: Out-of-bounds stack read in idnatoascii4i bsc990190 - CVE-2016-6263: stringpreputf8nfkcnormalize reject invalid UTF-8 bsc990191 ...

[SECURITY] [DSA 3658-1] libidn security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3658-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 01, 2016 https://www.debian.org/security/faq -...

Ubuntu 14.04 LTS / 16.04 LTS : Libidn vulnerabilities (USN-3068-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3068-1 advisory. Thijs Alkemade, Gustavo Grieco, Daniel Stenberg, and Nikos Mavrogiannopoulos discovered that Libidn incorrectly handled invalid UTF-8...

SUSE-SU-2016:2079-1 Security update for libidn

This update for libidn fixes the following issues: - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input bsc990189 - CVE-2016-6261: Out-of-bounds stack read in idnatoascii4i bsc990190 - CVE-2016-6263: stringpreputf8nfkcnormalize reject invalid UTF-8 bsc990191 -...

Debian DLA-582-1 : libidn security update

Multiple vulnerabilities have been discovered in libidn. The Common Vulnerabilities and Exposures project identifies the following problems : CVE-2015-8948 When idn is reading one zero byte as input an out-of-bounds-read occurred. CVE-2016-6261 An out-of-bounds stack read is exploitable in...