Published: 31/08/2017 Updated: 21/10/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Integer overflow in the _isBidi function in bidi.c in Libidn2 prior to 2.0.4 allows remote malicious users to cause a denial of service or possibly have unspecified other impact.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnu libidn2

Debian Bug report logs - #873902 libidn2-0: CVE-2017-14062: integer overflow in decode_digit Package: src:libidn2-0; Maintainer for src:libidn2-0 is Debian Libidn team <help-libidn@gnuorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 1 Sep 2017 04:57:02 UTC Severity: important Tags: patch, secu ...

Debian Bug report logs - #873904 libidn2-0: CVE-2017-14061: integer overflow in _isBidi function Package: src:libidn2-0; Maintainer for src:libidn2-0 is Debian Libidn team <help-libidn@gnuorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 1 Sep 2017 05:12:02 UTC Severity: important Tags: patch, ...

Integer overflow in the _isBidi function in bidic in Libidn2 before 204 allows remote attackers to cause a denial of service or possibly have unspecified other impact ...

CWE-190 https://gitlab.com/libidn/libidn2/commit/16853b6973a1e72fee2b7cccda85472cb9951305 https://gitlab.com/libidn/libidn2/blob/master/NEWS https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873902

CVE-2017-14061

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect