24 matches found
UBUNTU-CVE-2026-57053
GNU libidn before 1.44 is prone to out-of-bounds reads ofuninitialized...
CVE-2026-57053
GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idnatounicodeinternal. The affected code is not present in libidn2...
EUVD-2026-38523
GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idnatounicodeinternal. The affected code is not present in libidn2...
CVE-2026-57053
CVE-2026-57053 affects GNU libidn before 1.44, with out-of-bounds reads of uninitialized memory in the ToUnicode APIs due to mishandling in idna_to_unicode_internal; the vulnerable code is not present in libidn2. The CVSSv3.1 base score is 4.0 (Medium), with LOCAL attack vector, HIGH complexity, ...
EUVD-2015-8804
Malware in sbrugna...
RHEL 7 : libidn (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libidn2: Integer overflow in punydecode.c/decodedigit CVE-2017-14062 - The stringpreputf8toucs4 function ...
Debian: Security Advisory (DLA-291-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
[SECURITY] Fedora 25 Update: mingw-libidn-1.33-1.fc25
GNU Libidn is an implementation of the Stringprep, Punycode and IDNA specifications defined by the IETF Internationalized Domain Names IDN working group, used for internationalized domain names...
Out-of-bounds
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
ALPINE-CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
DEBIAN-CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
CVE-2015-8948
CVE-2015-8948 : Affected software is GNU libidn; vulnerability arises from processing input where a zero byte is read as input, causing an out-of-bounds read that could reveal memory. This targets libidn versions before 1.33. Several connected advisories confirm the issue (e.g., BSA-2017-213 and ...
CVE-2015-8948
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read...
GNU Libidn Remote Arbitrary Code Execution Vulnerability
GNU Libidn is a package that implements string preprocessing, Punycode, and IDNA specification definitions via the IETF International Domain Name IDN. A remote arbitrary code execution vulnerability exists in GNU Libidn. An attacker could exploit this vulnerability to execute arbitrary code in th...
GNU Libidn Remote Arbitrary Code Execution Vulnerability (CNVD-2016-05809)
GNU Libidn is a package that implements string preprocessing, Punycode, and IDNA specification definitions via the IETF International Domain Name IDN. A remote arbitrary code execution vulnerability exists in GNU Libidn, which could be exploited by an attacker to execute arbitrary code in an...