Unrated severityNVD Advisory· Published Aug 21, 2014· Updated May 6, 2026

CVE-2014-5384

Description

The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different vulnerability types.

Affected products

FreeBSD/FreeBSD
cpe:2.3:o:freebsd:freebsd:10.0:*:*:*:*:*:*:*
NetBSD/NetBSD
cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.freebsd.org/security/advisories/FreeBSD-SA-14:15.iconv.ascnvdVendor Advisory
mail-index.netbsd.org/source-changes/2014/06/24/msg055822.htmlnvd
www.securitytracker.com/id/1030458nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000