The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent malicious users to cause a denial of service (NULL pointer dereference) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types. CVE-2014-5384 is used for the NULL pointer dereference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netbsd netbsd |
||
freebsd freebsd 10.0 |