Shell Code Execution

libunbound.so is vulnerable to shell code execution. The attack is possible due to not proper handling of a malicious IPSECKEY answer in the ipsec. The vulnerability can only triggered when the following conditions are met: 1 compiled the library with --enable-ipsecmod support, and ipsecmod is...

musl libc buffer overflow vulnerability

musl libc is the new standard library for a new generation of Linux-based devices. A buffer overflow vulnerability exists in musl libc prior to version 1.1.17. The vulnerability arises because dnsparsecallback in network/lookupname.c does not limit the number of addresses, and an attacker can cau...

CVE-2017-15650

musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dnsparsecallback in network/lookupname.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query...

bind: denial of service when processing queries and with both DNS64 and RPZ enabled

ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a denial of service assertion failure and named daemon exit via a query for an AAAA record...