7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.045 Low
EPSS
Percentile
91.6%
A bug was discovered in our label decompression code, making it possible
for names to refer to themselves, thus causing a loop during
decompression. This loop is capped at a 1000 iterations by a failsafe,
making the issue harmless on most platforms.
However, on specific platforms, the recursion involved in these 1000
steps causes memory corruption leading to a quick crash, presumably
because the default stack is too small.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | powerdns-recursor | < 3.7.2-1 | UNKNOWN |