openSUSE Security Update : libidn2 (openSUSE-2017-1036)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for libidn2 fixes the following issues :

- integer overflow in bidi.c/_isBidi() could lead to
unexpected behavior (boo#1056451)

- integer overflow in puny_decode.c/decode_digit() could
lead to unexpected behavior (boo#1056450)

libunistring was rebuilt to supply a -32bit package, a dependency for
libidn2-0-32bit (boo#1056981).

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=1056450
https://bugzilla.opensuse.org/show_bug.cgi?id=1056451
https://bugzilla.opensuse.org/show_bug.cgi?id=1056981

Solution :

Update the affected libidn2 packages.

Risk factor :

Medium

Family: SuSE Local Security Checks

Nessus Plugin ID: 103161 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now