GHSA-xpv7-vm32-p7wvMediumCVSS 4.0

GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode...

Published
June 23, 2026
Last Modified
June 23, 2026

🔗 CVE IDs covered (1)

📋 Description

GNU libidn before 1.44 is prone to out-of-bounds reads of uninitialized memory in the ToUnicode APIs because of mishandling in idna_to_unicode_internal. The affected code is not present in libidn2.

🔗 References (4)