Gnu Libidn
6 CVEs affecting Gnu Libidn. Latest disclosed: 2026-06-23. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-6263 | High | 7.5 | 2016-09-07 | The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds… |
CVE-2016-6262 | High | 7.5 | 2016-09-07 | idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds… |
CVE-2016-6261 | High | 7.5 | 2016-09-07 | The idna_to_ascii_4i function in lib/idna.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash… |
CVE-2015-8948 | High | 7.5 | 2016-09-07 | idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bou… |
CVE-2026-57053 | Medium | 4.0 | 2026-06-23 | GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idna_to_unicode_internal. The af… |
CVE-2015-2059 | | 2015-08-12 | The stringprep_utf8_to_ucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have othe… |