Astra Linux - уязвимость в ldns

When ldns version 1.7.1 verifies a zone file, the ldnsrrnewfrmstrinternal function has a heap out-of-bounds read vulnerability. An attacker can leak information from the heap by constructing a zone file payload...

EUVD-2017-1499

Malware in sbrugna...

EUVD-2020-11756

Malware in sbrugna...

EUVD-2020-11757

Malware in sbrugna...

EUVD-2011-3544

Malware in sbrugna...

EUVD-2014-3227

Malware in sbrugna...

EUVD-2017-1500

Malware in sbrugna...

ldns bug fix and enhancement update

An update is available for ldns. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.10...

Linux Distros Unpatched Vulnerability : CVE-2020-19861

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a zone file in ldns 1.7.1 is parsed, the function ldnsnsec3saltdata is too trusted for the length value obtained from the zone file. When the memcpy is...

Linux Distros Unpatched Vulnerability : CVE-2014-3209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by...

CVE-2017-1000231 affecting package ldns 1.7.0-31

CVE-2017-1000231 affecting package ldns 1.7.0-31. This CVE either no longer is or was never applicable...

CVE-2017-1000232 affecting package ldns 1.7.0-31

CVE-2017-1000232 affecting package ldns 1.7.0-31. This CVE either no longer is or was never applicable...

Advisory ROSA-SA-2024-2476

software: ldns 1.8.3 OS: ROSA-CHROME packageevrstring: ldns-1.8.3-1 CVE-ID: CVE-2020-19861 BDU-ID: 2022-05917 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the ldnsnsec3saltdata function of the DNS LDNS library is related to reading outside the allowed data buffer boundaries. Exploitation of the...

OPENSUSE-SU-2024:10912-1 ldns-1.7.1-1.11 on GA media

These are all security issues fixed in the ldns-1.7.1-1.11 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:10556-1 ldns-1.6.17-5.7 on GA media

These are all security issues fixed in the ldns-1.6.17-5.7 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:11802-1 ldns-1.8.1-1.1 on GA media

These are all security issues fixed in the ldns-1.8.1-1.1 package on the GA media of openSUSE Tumbleweed...

RHEL 6 : ldns (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ldns: Memory corruption in ldnsrrnewfrmfpl CVE-2017-1000231 - The ldns-keygen tool in ldns 1.6.x uses the...

RHEL 7 : ldns (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ldns: Memory corruption in ldnsrrnewfrmfpl CVE-2017-1000231 - The ldns-keygen tool in ldns 1.6.x uses the...

RHEL 8 : ldns (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - ldns: heap overread vulnerability via zone file CVE-2020-19860 Note that Nessus has not tested for this issue but h...

RHEL 6 : ldns (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ldns: Memory corruption in ldnsrrnewfrmfpl CVE-2017-1000231 - When ldns version 1.7.1 verifies a zone fil...