CVE-2019-18224: libidn2: heap-based buffer overflow in idn2_to_ascii_4i in lib/lookup.c

Severity: Critical

CVSS Score: 9.8

idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a heap-based buffer overflow via a long domain string.