| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-6263 | 5.0 |
The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.
|
29-06-2021 - 15:15 | 07-09-2016 - 20:59 | |
| CVE-2015-8948 | 5.0 |
idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read.
|
29-06-2021 - 15:15 | 07-09-2016 - 20:59 | |
| CVE-2016-6261 | 5.0 |
The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via 64 bytes of input.
|
29-06-2021 - 15:15 | 07-09-2016 - 20:59 | |
| CVE-2016-6262 | 5.0 |
idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948.
|
29-06-2021 - 15:15 | 07-09-2016 - 20:59 | |
| CVE-2015-2059 | 7.5 |
The stringprep_utf8_to_ucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bou
|
30-10-2018 - 16:27 | 12-08-2015 - 14:59 |