3 matches found
CVE-2025-62408
c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...
CVE-2025-62408 c-ares has a Use After Free vulnerability when connection is cleaned up after error
c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...
CVE-2025-62408
CVE-2025-62408 affects the c-ares asynchronous DNS resolver. Versions 1.32.3–1.34.5 terminate a query after maximum attempts when read_answer() or process_answer() are used, causing a Denial of Service. The issue is fixed in version 1.34.6. Remediation: upgrade to 1.34.6 (or later).