BSA-2017-212
21322
03 August 2018
31 March 2017
Closed
High
7.5
N/A
CVE-2016-6263
Summary
Security Advisory ID : BSA-2017-212
Component : libidn
Revision : 2.0: Final
The stringprep_utf8_nfkc_normalize function in lib/nfkc.c in libidn before 1.33 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via crafted UTF-8 data.
Products Confirmed Not Vulnerable
No Brocade Fibre Channel technology products from Broadcom are currently known to be affected by this vulnerability.
Workaround
There are no workarounds that address this vulnerability.
Revision History
Version | Change | Date |
---|---|---|
1.0 | Initial Publication | March 31, 2017 |
2.0 | FOS update and updated to reflect only Brocade Fiber Channel technology | August 3,2018 |