Security Advisory

CVE-2015-2059

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-08-12 14:00:00

Last updated 2024-08-06 05:02:43

Assigner mitre

State PUBLISHED

Description

The stringprep_utf8_to_ucs4 function in libin before 1.31, as used in jabberd2, allows context-dependent attackers to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read.

← Browse all CVEs View on cve.org ↗