2 matches found
c-ares 安全特征问题漏洞
c-ares is a C library for asynchronous DNS requests from the individual developers of c-ares. A security vulnerability exists in c-ares versions prior to 1.19.1, which stems from generating predictable output...
DEBIAN-CVE-2017-1000381
The c-ares function aresparsenaptrreply, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way...