SUSE-SU-2016:2291-1 -- SLES libidn| ID: oval:org.secpod.oval:def:89045267 | Date: (C)2021-08-03 (M)2022-09-22 |
| Class: PATCH | Family: unix |
This update for libidn fixes the following issues: - CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input - CVE-2016-6261: Out-of-bounds stack read in idna_to_ascii_4i - CVE-2016-6263: stringprep_utf8_nfkc_normalize reject invalid UTF-8 - CVE-2015-2059: out-of-bounds read with stringprep on invalid UTF-8
| Platform: |
| SUSE Linux Enterprise Server 11 SP4 |
