What is the severity of CVE-2016-6262?

CVE-2016-6262 is considered a medium severity vulnerability due to the potential for sensitive memory information disclosure.

How do I fix CVE-2016-6262?

To fix CVE-2016-6262, upgrade libidn to version 1.33 or later.

What types of systems are affected by CVE-2016-6262?

CVE-2016-6262 affects GNU libidn versions prior to 1.33 and various versions of Ubuntu and openSUSE.

What can an attacker achieve with CVE-2016-6262?

An attacker exploiting CVE-2016-6262 might obtain sensitive memory data from the affected system.

Is CVE-2016-6262 related to any other vulnerabilities?

CVE-2016-6262 is a different vulnerability than CVE-2015-8948, though both involve issues in the same library.

Vulnerability/
CVE-2016-6262

high

7.5

CWE

125

7/9/2016

6/8/2024

CVE-2016-6262

First published: Wed Sep 07 2016(Updated: )

idn in libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read, a different vulnerability than CVE-2015-8948.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
GNU libidn	<=1.32
Ubuntu Linux	=12.04
Ubuntu Linux	=14.04
Ubuntu Linux	=16.04
openSUSE	=42.1
openSUSE	=13.2

Remedy

http://git.savannah.gnu.org/cgit/libidn.git/commit/?id=5e3cb9c7b5bf0ce665b9d68f5ddf095af5c9ba60

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6262?
CVE-2016-6262 is considered a medium severity vulnerability due to the potential for sensitive memory information disclosure.
How do I fix CVE-2016-6262?
To fix CVE-2016-6262, upgrade libidn to version 1.33 or later.
What types of systems are affected by CVE-2016-6262?
CVE-2016-6262 affects GNU libidn versions prior to 1.33 and various versions of Ubuntu and openSUSE.
What can an attacker achieve with CVE-2016-6262?
An attacker exploiting CVE-2016-6262 might obtain sensitive memory data from the affected system.
Is CVE-2016-6262 related to any other vulnerabilities?
CVE-2016-6262 is a different vulnerability than CVE-2015-8948, though both involve issues in the same library.

agent/type
agent/remedy
agent/author
agent/weakness
agent/severity
agent/description
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/gnu
canonical/gnu libidn
version/gnu libidn/1.32
vendor/canonical
canonical/ubuntu linux
version/ubuntu linux/12.04
version/ubuntu linux/14.04
version/ubuntu linux/16.04
vendor/opensuse
canonical/opensuse
version/opensuse/42.1
version/opensuse/13.2

Frequently Asked Questions

What is the severity of CVE-2016-6262?
CVE-2016-6262 is considered a medium severity vulnerability due to the potential for sensitive memory information disclosure.
How do I fix CVE-2016-6262?
To fix CVE-2016-6262, upgrade libidn to version 1.33 or later.
What types of systems are affected by CVE-2016-6262?
CVE-2016-6262 affects GNU libidn versions prior to 1.33 and various versions of Ubuntu and openSUSE.
What can an attacker achieve with CVE-2016-6262?
An attacker exploiting CVE-2016-6262 might obtain sensitive memory data from the affected system.
Is CVE-2016-6262 related to any other vulnerabilities?
CVE-2016-6262 is a different vulnerability than CVE-2015-8948, though both involve issues in the same library.

CVE-2016-6262

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6262?

How do I fix CVE-2016-6262?

What types of systems are affected by CVE-2016-6262?

What can an attacker achieve with CVE-2016-6262?

Is CVE-2016-6262 related to any other vulnerabilities?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2016-6262?

How do I fix CVE-2016-6262?

What types of systems are affected by CVE-2016-6262?

What can an attacker achieve with CVE-2016-6262?

Is CVE-2016-6262 related to any other vulnerabilities?