5 matches found
CVE-2022-30295
uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable DNS transaction IDs that may lead to DNS cache poisoning. This is related to a reset of a value to 0x2...
CBL Mariner 2.0 Security Update: uclibc-ng (CVE-2022-30295)
The version of uclibc-ng installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-30295 advisory. - uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable DNS transaction IDs that may lead to...
CVE-2022-30295 affecting package uclibc-ng 1.0.37-2
CVE-2022-30295 affecting package uclibc-ng 1.0.37-2. An upgraded version of the package is available that resolves this issue...
CVE-2022-30295 affecting package uclibc-ng for versions less than 1.0.41-1
CVE-2022-30295 affecting package uclibc-ng for versions less than 1.0.41-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-30295
CVE-2022-30295 affects uClibc-ng up to 1.0.40 and uClibc up to 0.9.33.2, where DNS transactions use predictable DNS TXIDs, enabling DNS cache poisoning. The issue is linked to a reset of a value to 0x2. A patch exists: uClibc-ng 1.0.41 (and vendor updates) address the vulnerability; upgrade to 1....