CVE-2026-30871

OpenWrt mdns daemon vulnerability (CVE-2026-30871) affects versions prior to 24.10.6 and 25.12.1. A stack-based buffer overflow in parse_question is triggered by PTR queries (reverse DNS: .in-addr.arpa and .ip6.arpa). DNS packets received on UDP port 5353 are expanded by dn_expand into an 8096-by...

Important: Red Hat Security Advisory: bind security update

An update for bind is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

Malicious Package

Overview @epc-infra/dns-stack is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

MAL-2022-239 Malicious code in @epc-infra/dns-stack (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 899932fc30250267552612a2fb30eb0b139b8e3503774b1fddddf95b65f6c618 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...