vulnerability

FreeBSD: VID-cb5189eb-572f-11e6-b334-002590263bf5 (CVE-2016-6261): libidn -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Jul 31, 2016	Dec 10, 2025	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Jul 31, 2016

Added

Dec 10, 2025

Modified

Dec 10, 2025

Description

Simon Josefsson reports: libidn: Fix out-of-bounds stack read in idna_to_ascii_4i. idn: Solve out-of-bounds-read when reading one zero byte as input. Also replaced fgets with getline. libidn: stringprep_utf8_nfkc_normalize reject invalid UTF-8. It was always documented to only accept UTF-8 data, but now it doesn't crash when presented with such data.

Solution

freebsd-upgrade-package-libidn

References

CVE-2016-6261
https://attackerkb.com/topics/CVE-2016-6261
CWE-125

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today