98 matches found
CVE-2019-25629
creationtimestamp| type| source ---|---|--- 2026-03-24 13:59:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mhsqbqobq42f 2026-03-28 05:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mi3waib3ha2d...
Security Bulletin: IBM DataPower Gateway vulnerable to a denial of service due to C-Ares
Summary C-Ares is used in IBM DataPower Gateway's DNS resolver Vulnerability Details CVEID:CVE-2025-31498 DESCRIPTION: c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in readanswers when processanswer may re-enqueue a query either due to a DNS...
Advisory ROSA-SA-2025-3106
Software: c-ares 1.13.0 OS: ROSA Virtualization 2.1 packageevrstring: c-ares-1.13.0-11.rv3 CVE-ID: CVE-2020-22217 BDU-ID: 2023-05898 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the aresparsesoareply function of the C-ares asynchronous DNS query library is related to an operation exceeding...
Linux Distros Unpatched Vulnerability : CVE-2020-25629
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Moodle where users with Log in as capability in a course context typically, course managers may gain access to some site...
ROOT-OS-DEBIAN-12-CVE-2024-25629 CVE-2024-25629 in rootio-c-ares - Patched by Root
Root has patched CVE-2024-25629 in the rootio-c-ares package for Root:Debian:12. Multiple fixed versions available...
NewStart CGSL MAIN 7.02 : c-ares Vulnerability (NS-SA-2025-0167)
The remote NewStart CGSL host, running version MAIN 7.02, has c-ares packages installed that are affected by a vulnerability: - c-ares is a C library for asynchronous DNS requests. aresreadline is used to parse local configuration files such as /etc/resolv.conf, /etc/nsswitch.conf, the HOSTALIASE...
TencentOS Server 4: c-ares (TSSA-2024:0263)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0263 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
TencentOS Server 3: c-ares (TSSA-2024:0313)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0313 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
NewStart CGSL MAIN 7.02 : c-ares Vulnerability (NS-SA-2025-0075)
The remote NewStart CGSL host, running version MAIN 7.02, has c-ares packages installed that are affected by a vulnerability: - c-ares is a C library for asynchronous DNS requests. aresreadline is used to parse local configuration files such as /etc/resolv.conf, /etc/nsswitch.conf, the HOSTALIASE...
CVE-2022-25629
An authenticated user who has the privilege to add/edit annotations on the Content tab, can craft a malicious annotation that can be executed on the annotations page Annotation Text Column...
Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2025-1482)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Alibaba Cloud Linux 3 : 0190: c-ares (ALINUX3-SA-2024:0190)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0190 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-25629: c-ares is a C library for...
RLSA-2024:3842 Low: c-ares security update
The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: Out of bounds read in aresreadline CVE-2024-25629 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
RLSA-2024:4249 Low: c-ares security update
The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: Out of bounds read in aresreadline CVE-2024-25629 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
c-ares security update
An update is available for c-ares. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The c-ares C library defines asynchronous DNS Domain Name System requests and...
RockyLinux 8 : c-ares (RLSA-2024:4249)
The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:4249 advisory. c-ares: Out of bounds read in aresreadline CVE-2024-25629 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. No...
Linux Distros Unpatched Vulnerability : CVE-2024-25629
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - c-ares is a C library for asynchronous DNS requests. aresreadline is used to parse local configuration files such as /etc/resolv.conf, /etc/nsswitch.conf, the...
CVE-2024-25629 affecting package ceph for versions less than 18.2.2-1
CVE-2024-25629 affecting package ceph for versions less than 18.2.2-1. A patched version of the package is available...
CVE-2024-25629 affecting package c-ares for versions less than 1.19.1-2
CVE-2024-25629 affecting package c-ares for versions less than 1.19.1-2. A patched version of the package is available...
CVE-2024-25629 affecting package grpc for versions less than 1.42.0-9
CVE-2024-25629 affecting package grpc for versions less than 1.42.0-9. A patched version of the package is available...