Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:11 a.m.25 views

CVE-2025-1673

A malicious or malformed DNS packet without a payload can cause an out-of-bounds read, resulting in a crash denial of service or an incorrect computation...

8.2CVSS6.8AI score0.00323EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-5069

Malicious code in bioql PyPI...

8.2CVSS6.6AI score0.00323EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/12 3:30 a.m.4 views

CVE-2025-24294

The attack vector is a potential Denial of Service DoS. The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet. An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses suc...

7AI score0.00539EPSS
Exploits0References1
OSV
OSV
added 2021/08/25 8:43 p.m.17 views

GHSA-369H-PJR2-6WRH Uncontrolled recursion in trust-dns-proto

There's a stack overflow leading to a crash when Trust-DNS's parses a malicious DNS packet. Affected versions of this crate did not properly handle parsing of DNS message compression RFC1035 section 4.1.4. The parser could be tricked into infinite loop when a compression offset pointed back to th...

7.5CVSS7.5AI score0.01411EPSS
Exploits0References3
RustSec
RustSec
added 2018/10/09 12:0 p.m.24 views

Stack overflow when parsing malicious DNS packet

There's a stack overflow leading to a crash when Trust-DNS's parses a malicious DNS packet. Affected versions of this crate did not properly handle parsing of DNS message compression RFC1035 section 4.1.4. The parser could be tricked into infinite loop when a compression offset pointed back to th...

7.5CVSS3.6AI score0.01411EPSS
Exploits0Affected Software1
Rows per page
Query Builder