19 matches found
Astra Linux - уязвимость в c-ares
C-ares is an asynchronous resolver library. The aresinetnetpton function is vulnerable to a buffer underflow for certain IPv6 addresses. In particular, the address “0::00:00:00/2” was found to cause an issue. C-ares only uses this function internally for configuration purposes, and an administrat...
EUVD-2023-35454
Malicious code in bioql PyPI...
K000138586: Node.js c-areas vulnerability CVE-2023-31130
Security Advisory Description c-ares is an asynchronous resolver library. aresinetnetpton is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
The vulnerability of the ares_inet_net_pton() function in the C-ares asynchronous DNS request library allows a hacker to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the aresinetnetpton function in the C-ares asynchronous DNS request library is related to a violation of the buffer boundary. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
Amazon Linux 2 : ecs-service-connect-agent, --advisory ALAS2ECS-2023-007 (ALASECS-2023-007)
The version of ecs-service-connect-agent installed on the remote host is prior to v1.27.0.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2023-007 advisory. Wasmtime is a standalone runtime for WebAssembly. Prior to versions 6.0.2, 7.0.1, and 8.0.1,...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
c-ares: Buffer Underwrite in ares_inet_net_pton()
A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...
Buffer Underwrite in ares_inet_net_pton()
...
AZL-34781 CVE-2023-31130 affecting package grpc for versions less than 1.62.0-2
c-ares is an asynchronous resolver library. aresinetnetpton is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to...
AZL-26914 CVE-2023-31130 affecting package c-ares for versions less than 1.19.1-1
c-ares is an asynchronous resolver library. aresinetnetpton is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to...
CVE-2023-31130 Buffer Underwrite in ares_inet_net_pton()
c-ares is an asynchronous resolver library. aresinetnetpton is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to...
CVE-2023-31130
CVE-2023-31130 affects the c-ares asynchronous DNS library. The vulnerability is a buffer underflow/underwrite in ares_inet_net_pton() for IPv6 addresses such as 0::00:00:00/2. Affected versions are prior to the fix, with the issue addressed in c-ares 1.19.1. Multiple advisories reference upgrade...
CVE-2023-31130 Buffer Underwrite in ares_inet_net_pton()
c-ares is an asynchronous resolver library. aresinetnetpton is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "0::00:00:00/2" was found to cause an issue. C-ares only uses this function internally for configuration purposes which would require an administrator to...