The idna_to_ascii_4i function in lib/idna.c in libidn prior to 1.33 allows context-dependent malicious users to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse leap 42.1 |
||
gnu libidn |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 14.04 |