CVE-2014-9488: less: out of bounds read access in is_utf8_well_formed()

Severity: Critical

CVSS Score: 2.5

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.