CVE-2017-14062

Priority
Medium
Description
Integer overflow in the decode_digit function in puny_decode.c in Libidn2
before 2.0.4 allows remote attackers to cause a denial of service or
possibly have unspecified other impact.
References
Bugs
Assigned-to
mdeslaur
Package
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):not-affected (1.33-2)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Ubuntu 14.04 LTS (Trusty Tahr):released (1.28-1ubuntu2.2)
Ubuntu Core 15.04:needed
Ubuntu 16.04 LTS (Xenial Xerus):released (1.32-3ubuntu1.2)
Ubuntu 17.04 (Zesty Zapus):released (1.33-1ubuntu0.1)
Package
Upstream:needs-triage
Ubuntu 17.10 (Artful Aardvark):not-affected (fixed already)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu Core 15.04:DNE
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 17.04 (Zesty Zapus):released (0.16-1ubuntu0.1)
More Information

Updated: 2017-10-03 12:14:17 UTC (commit 13444)