Описание
The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| uclibc | fixed | 1.0.20-1 | package |
Примечания
Just for cross-compiling, not used for actual packages
https://repo.or.cz/uclibc-ng.git/commit/6932f2282ba0578d6ca2f21eead920d6b78bc93c
https://www.openwall.com/lists/oss-security/2016/02/05/2
EPSS
Процентиль: 70%
0.00648
Низкий
Связанные уязвимости
CVSS3: 7.5
nvd
почти 9 лет назад
The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.
CVSS3: 7.5
github
больше 3 лет назад
The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.
EPSS
Процентиль: 70%
0.00648
Низкий