Package: libidn / 1.29-1+deb8u2
Metadata
Package | Version | Patches format |
---|---|---|
libidn | 1.29-1+deb8u2 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
01_CVE 2015 2059.patch | (download) |
lib/gl/Makefile.am |
10 9 + 1 - 0 ! |
libidn: stringprep_utf8_to_ucs4 now rejects invalid utf-8. cve-2015-2059 |
02_CVE 2015 2059 2.patch | (download) |
lib/idna.c |
10 8 + 2 - 0 ! |
libidn: fix crash in idna_to_unicode_8z8z and idna_to_unicode_8zlz. |
03_skip makeinfo.patch | (download) |
doc/Makefile.am |
10 1 + 9 - 0 ! |
--- |
04_CVE 2015 8948 idn Use getline instead of fgets with fixed size buf.patch | (download) |
gl/Makefile.am |
196 195 + 1 - 0 ! |
[patch] idn: use getline instead of fgets with fixed-size buffer. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Fixes out-of-bounds read, reported by Hanno Bck. |
05_CVE 2015 8948 Really fix bug when reading 00 inputs.patch | (download) |
src/idn.c |
5 3 + 2 - 0 ! |
[patch] really fix bug when reading \00 inputs. |
06_CVE 2016 6261 Add regression check for Hanno B ck s stack OOB issu.patch | (download) |
tests/Makefile.am |
2 1 + 1 - 0 ! |
[patch] =?utf-8?q?add=20regression=20check=20for=20hanno=20b?= =?UTF-8?q?=C3=B6ck's=20stack=20OOB=20issue.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit |
07_CVE 2016 6261 Fix out of bounds stack read. Report and patch by Ha.patch | (download) |
lib/idna.c |
4 3 + 1 - 0 ! |
[patch] =?utf-8?q?fix=20out-of-bounds=20stack=20read.=20=20report?= =?UTF-8?q?=20and=20patch=20by=20Hanno=20B=C3=B6ck.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit |
08_CVE 2016 6261 Fix memory leak in last fix.patch | (download) |
lib/idna.c |
5 4 + 1 - 0 ! |
[patch] fix memory leak in last fix. |
09_CVE 2016 6263 stringprep_utf8_nfkc_normalize Reject invalid UTF8 i.patch | (download) |
lib/nfkc.c |
10 10 + 0 - 0 ! |
[patch] stringprep_utf8_nfkc_normalize: reject invalid utf8 instead of crashing. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Also add regression self check. Reported by Hanno Bck. |