CVE-2019-18224

moderate-risk

Published 2019-10-21

idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string.

Do I need to act?

2.4% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Fix available

Upgrade to: 5c5d7ae143e06c31a6ba3f8eeaef7a3ec943ba55, e4d1558aa2c1c04a05066ee8600f37603890ba8c

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Libidn2

Gnu

Exploit https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12420

Patch https://github.com/libidn/libidn2/commit/e4d1558aa2c1c04a05066ee8600f37603890ba8...

Release Notes https://github.com/libidn/libidn2/compare/libidn2-2.1.0...libidn2-2.1.1

https://seclists.org/bugtraq/2020/Feb/4

https://security.gentoo.org/glsa/202003-63

https://usn.ubuntu.com/4168-1/

https://www.debian.org/security/2020/dsa-4613

Exploit https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=12420

Patch https://github.com/libidn/libidn2/commit/e4d1558aa2c1c04a05066ee8600f37603890ba8...

Release Notes https://github.com/libidn/libidn2/compare/libidn2-2.1.0...libidn2-2.1.1

https://seclists.org/bugtraq/2020/Feb/4

https://security.gentoo.org/glsa/202003-63

and 2 more references

/ 100

moderate-risk

Severity 32/34 · Critical

Exploitability 6/34 · Minimal

Exposure 5/34 · Minimal