CVE-2014-9488

EPSS 2.3%

Published: 4/14/2015Modified: 4/28/2026

Description

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.

Affected packages (1)

Debian/lessfrom 0, < 481-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-9488