Lucene search
K

11 matches found

RedHat Linux
RedHat Linux
added 2026/07/07 6:10 p.m.5 views

aardvark-dns: Aardvark-dns: Denial of Service via truncated TCP DNS query and connection reset

A flaw was found in aardvark-dns where a specially crafted TCP DNS query followed by a connection reset can trigger an infinite error loop, leading to 100% CPU usage and a denial of service. As aardvark-dns is only accessible via internal Podman networks, this issue can be exploited by a local...

7.5CVSS5.9AI score0.00383EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/04/08 11:24 p.m.10 views

SUSE CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

6.2CVSS5.8AI score0.00383EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/08 9:20 a.m.6 views

CVE-2026-35406

A flaw was found in aardvark-dns where a specially crafted TCP DNS query followed by a connection reset can trigger an infinite error loop, leading to 100% CPU usage and a denial of service. As aardvark-dns is only accessible via internal Podman networks, this issue can be exploited by a local...

7.5CVSS5.8AI score0.00383EPSS
Exploits0References6
NVD
NVD
added 2026/04/07 10:16 p.m.5 views

CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS0.00383EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/04/07 10:16 p.m.7 views

CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS5.9AI score0.00383EPSS
Exploits0References4
OSV
OSV
added 2026/04/07 10:16 p.m.19 views

UBUNTU-CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS5.8AI score0.00383EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/07 9:32 p.m.5 views

CVE-2026-35406 Aardvark-dns has incorrect error handling for malformed tcp packets

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

6.2CVSS5.9AI score0.00383EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/04/07 9:32 p.m.34 views

CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS5.3AI score0.00383EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/04/07 9:32 p.m.23 views

CVE-2026-35406

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

7.5CVSS5.7AI score0.00383EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/07 9:32 p.m.17 views

CVE-2026-35406 Aardvark-dns has incorrect error handling for malformed tcp packets

Aardvark-dns is an authoritative dns server for A/AAAA container records. From 1.16.0 to 1.17.0, a truncated TCP DNS query followed by a connection reset causes aardvark-dns to enter an unrecoverable infinite error loop at 100% CPU. This vulnerability is fixed in 1.17.1...

6.2CVSS0.00383EPSS
Exploits0References3
CVE
CVE
added 2026/04/07 9:32 p.m.26 views

CVE-2026-35406

Affected software: aardvark-dns (authoritative DNS server for A/AAAA container records). Vulnerable versions: 1.16.0 through 1.17.0. Root cause: a truncated TCP DNS query followed by a connection reset can cause the process to enter an unrecoverable infinite error loop, consuming 100% CPU. Impact...

7.5CVSS5.9AI score0.00383EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder