Astra Linux - уязвимость в ldns

When a zone file in ldns 1.7.1 is parsed, the function ldnsnsec3saltdata is too trusted regarding the length value obtained from the zone file. During the memcpy operation, the data consisting of 0xfe – ldnsrdfsizesaltrdf bytes can be copied, leading to heap overflow information leakage...

SUSE CVE-2020-19861

When a zone file in ldns 1.7.1 is parsed, the function ldnsnsec3saltdata is too trusted for the length value obtained from the zone file. When the memcpy is copied, the 0xfe - ldnsrdfsizesaltrdf byte data can be copied, causing heap overflow information leakage...

UBUNTU-CVE-2020-19861

When a zone file in ldns 1.7.1 is parsed, the function ldnsnsec3saltdata is too trusted for the length value obtained from the zone file. When the memcpy is copied, the 0xfe - ldnsrdfsizesaltrdf byte data can be copied, causing heap overflow information leakage...

Nlnet Labs ldns 缓冲区错误漏洞

NLnet Labs ldns is a DNS library from the NLnet Labs Nlnet Labs Foundation in the Netherlands that facilitates the programming of DNS tools. A security vulnerability exists in Nlnet Labs ldns that stems from ldns parsing a zone file with the function ldnsnsec3saltdata being too trustworthy for...

PT-2019-6251 · Nlnet +6 · Ldns +6

Name of the Vulnerable Software and Affected Versions: ldns version 1.7.1 Description: The issue is related to the function ldns nsec3 salt data in the ldns library, which is too trusting of the length value obtained from a zone file. This can lead to a heap overflow and information leakage when...

mcrypt <= 2.6.8 stack-based buffer overflow poc

Exploit for linux platform in category dos / poc !/usr/bin/env python mcrypt = 2.6.8 stack-based buffer overflow poc http://mcrypt.sourceforge.net/ the command line tool, not the library date: 2012-09-04 exploit author: ishikawa tested on: ubuntu 12.04.1 tech: it overflows in checkfilehead when...

CVE-2012-4409

Stack-based buffer overflow in the checkfilehead function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted header containing long salt data that is not properly handled during decryption...

Stack overflow

Stack-based buffer overflow in the checkfilehead function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted header containing long salt data that is not properly handled during decryption...

mcrypt <= 2.6.8 stack-based buffer overflow poc

Exploit for windows platform in category dos / poc !/usr/bin/env python mcrypt = 2.6.8 stack-based buffer overflow poc http://mcrypt.sourceforge.net/ the command line tool, not the library date: 2012-09-04 exploit author: ishikawa tested on: ubuntu 12.04.1 tech: it overflows in checkfilehead when...