The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types. CVE-2014-5384 is used for the NULL pointer dereference.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:09
Type | Values Removed | Values Added |
---|---|---|
References | () http://mail-index.netbsd.org/source-changes/2014/06/24/msg055822.html - | |
References | () http://www.freebsd.org/security/advisories/FreeBSD-SA-14:15.iconv.asc - Vendor Advisory | |
References | () http://www.securitytracker.com/id/1030458 - |
Information
Published : 2014-08-21 22:55
Updated : 2024-11-21 02:09
NVD link : CVE-2014-3951
Mitre link : CVE-2014-3951
CVE.ORG link : CVE-2014-3951
JSON object : View
Products Affected
netbsd
- netbsd
freebsd
- freebsd
CWE