A vulnerability was found in c-ares. A hostname with an escaped trailing dot (such as โhello\.โ) would have its size calculated incorrectly, leading to a single byte written beyond the end of a buffer on the heap. An attacker able to provide such a hostname to an application using c-ares, could potentially cause that application to crash.