Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for libidn

This libidn update to version 1.33 fixes the following issues:

Security issues fixed:
- CVE-2015-8948, CVE-2016-6262: Fixed an out-of-bounds-read when reading one zero byte as input (bsc#990189).
- CVE-2016-6263: Fixed stringprep_utf8_nfkc_normalize to reject invalid UTF-8 (bsc#boo#990191).

Included bugfixes:
- Fixed crash in idna_to_unicode_8z8z and idna_to_unicode_8zlz (introduced in 1.31).
- API and ABI is backwards compatible with the previous version.
- Update gpg keyring

Fixed bugs
bnc#990189
VUL-1: CVE-2015-8948,CVE-2016-6262: libidn: out-of-bounds-read when reading one zero byte as input
bnc#990191
VUL-1: CVE-2016-6263: libidn: stringprep_utf8_nfkc_normalize reject invalid UTF-8
CVE-2015-8948
CVE-2016-6262
CVE-2016-6263
Selected Binaries
openSUSE Build Service is sponsored by
Places