20 matches found
EUVD-2015-8804
Malware in sbrugna...
RHEL 7 : libidn (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libidn2: Integer overflow in punydecode.c/decodedigit CVE-2017-14062 - The stringpreputf8toucs4 function ...
Debian: Security Advisory (DLA-291-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
[SECURITY] Fedora 25 Update: mingw-libidn-1.33-1.fc25
GNU Libidn is an implementation of the Stringprep, Punycode and IDNA specifications defined by the IETF Internationalized Domain Names IDN working group, used for internationalized domain names...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
ALPINE-CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
DEBIAN-CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
Out-of-bounds
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
CVE-2015-8948 : Affected software is GNU libidn; vulnerability arises from processing input where a zero byte is read as input, causing an out-of-bounds read that could reveal memory. This targets libidn versions before 1.33. Several connected advisories confirm the issue (e.g., BSA-2017-213 and ...
GNU Libidn Remote Arbitrary Code Execution Vulnerability (CNVD-2016-05807)
GNU Libidn is a package that implements string preprocessing, Punycode, and IDNA specification definitions via the IETF International Domain Name IDN. A remote arbitrary code execution vulnerability exists in GNU Libidn, which could be exploited by an attacker to execute arbitrary code in an...
GNU Libidn Remote Arbitrary Code Execution Vulnerability (CNVD-2016-05809)
GNU Libidn is a package that implements string preprocessing, Punycode, and IDNA specification definitions via the IETF International Domain Name IDN. A remote arbitrary code execution vulnerability exists in GNU Libidn, which could be exploited by an attacker to execute arbitrary code in an...
GNU Libidn Remote Arbitrary Code Execution Vulnerability
GNU Libidn is a package that implements string preprocessing, Punycode, and IDNA specification definitions via the IETF International Domain Name IDN. A remote arbitrary code execution vulnerability exists in GNU Libidn. An attacker could exploit this vulnerability to execute arbitrary code in th...
[SECURITY] Fedora 24 Update: libidn-1.33-1.fc24
GNU Libidn is an implementation of the Stringprep, Punycode and IDNA specifications defined by the IETF Internationalized Domain Names IDN working group, used for internationalized domain names...
[SECURITY] [DLA 291-1] libidn security update
Package : libidn Version : 1.15-2+deb6u2 Adam Sampson found a vulnerability in GNU Libidn, library that implements the IETF IDN specifications. Libdin incorrectly handled invalid UTF-8 input, causing it to bad free. This issue was introduced by the fix for CVE-2015-2059. For Debian 6 “Squeeze”,...
DLA-291-1 libidn - security update
Bulletin has no description...