CVE-2016-6262

HIGH7.5EPSS 2.3%

發布日:2016/9/7修改日:2025/12/3

描述

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948.

受影響套件(1)

Alpine/libidnfrom 0, < 1.33-r0

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH7.5	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

參考連結(1)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2016-6262