Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-2224

Опубликовано: 24 мар. 2017
Источник: debian

Описание

The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
uclibcfixed1.0.20-1package

Примечания

  • Just for cross-compiling, not used for actual packages

  • https://repo.or.cz/uclibc-ng.git/commit/d9c3a16dcab57d6b56225b9a67e9119cc9e2e4ac

  • https://www.openwall.com/lists/oss-security/2016/02/05/2

Связанные уязвимости

nvd логотип

CVE-2016-2224

CVSS3: 7.5
nvd
почти 9 лет назад

The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.

github логотип

GHSA-f95j-r4jh-f3j8

CVSS3: 7.5
github
больше 3 лет назад

The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.