Описание
The c-ares function ares_parse_naptr_reply(), which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 1.12.0-4 |
| cosmic | not-affected | 1.12.0-4 |
| devel | not-affected | 1.12.0-4 |
| disco | not-affected | 1.12.0-4 |
| eoan | not-affected | 1.12.0-4 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.10.0-2ubuntu0.2]] |
| esm-infra/bionic | not-affected | 1.12.0-4 |
| esm-infra/focal | not-affected | 1.12.0-4 |
| esm-infra/xenial | not-affected | 1.10.0-3ubuntu0.2 |
| focal | not-affected | 1.12.0-4 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | not-affected | 8.1.4 |
| cosmic | not-affected | 8.1.4 |
| devel | not-affected | 8.1.4 |
| disco | not-affected | 8.1.4 |
| eoan | not-affected | 8.1.4 |
| esm-apps/bionic | not-affected | 8.1.4 |
| esm-apps/focal | not-affected | 8.1.4 |
| esm-apps/jammy | not-affected | 8.1.4 |
| esm-apps/xenial | released | 4.2.6~dfsg-1ubuntu4.2+esm1 |
| esm-infra-legacy/trusty | not-affected | uses system ares |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way.
The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way.
The c-ares function `ares_parse_naptr_reply()`, which is used for pars ...
5 Medium
CVSS2
7.5 High
CVSS3