A heap-based buffer overflow vulnerability was discovered in the idn2_to_ascii_4i function in libidn2, the GNU library for Internationalized Domain Names , which could result in denial of service, or the execution of arbitrary code when processing a long domain string.