14 matches found
CVE-2026-42388
Incomplete validation of the SOA record present in a catalog zone might lead to a crash...
CVE-2026-42388
Technical details are not publicly available in the provided documents. Monitor for updates.
EUVD-2026-39358
Incomplete validation of the SOA record present in a catalog zone might lead to a crash...
CVE-2026-42388
Incomplete validation of the SOA record present in a catalog zone might lead to a crash...
CVE-2026-42388 Missing input validation for catalog zones
Incomplete validation of the SOA record present in a catalog zone might lead to a crash...
CVE-2026-42388
Incomplete validation of the SOA record present in a catalog zone might lead to a crash...
CVE-2026-42001
A flaw was found in PowerDNS Authoritative Server pdns. This vulnerability arises from insufficient validation of Autoprimary SOA Start of Authority queries. A remote attacker can exploit this flaw to trigger a Denial of Service DoS, making the server unresponsive and unavailable to legitimate...
SUSE CVE-2020-22217
Buffer overflow vulnerability in c-ares before 1161 thru 1170 via function aresparsesoareply in aresparsesoareply.c...
SUSE CVE-2017-9106
An issue was discovered in adns before 1.5.2. adnsrrinfo mishandles a bogus datap. The general pattern for formatting integers is to sprintf into a fixed-size buffer. This is correct if the input is in the right range; if it isn't, the buffer may be overrun depending on the sizes of the types on...
DEBIAN-CVE-2017-9106
An issue was discovered in adns before 1.5.2. adnsrrinfo mishandles a bogus datap. The general pattern for formatting integers is to sprintf into a fixed-size buffer. This is correct if the input is in the right range; if it isn't, the buffer may be overrun depending on the sizes of the types on...
UBUNTU-CVE-2017-9106
An issue was discovered in adns before 1.5.2. adnsrrinfo mishandles a bogus datap. The general pattern for formatting integers is to sprintf into a fixed-size buffer. This is correct if the input is in the right range; if it isn't, the buffer may be overrun depending on the sizes of the types on...
UBUNTU-CVE-2020-12244
An issue has been found in PowerDNS Recursor 4.1.0 through 4.3.0 where records in the answer section of a NXDOMAIN response lacking an SOA were not properly validated in SyncRes::processAnswer, allowing an attacker to bypass DNSSEC validation...
Code injection
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...
UBUNTU-CVE-2008-4392
dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultaneous identical outbound DNS queries, which makes it easier for remote attackers to spoof DNS responses, as demonstrated by a spoofed A record in the Additional section of a response to a Start of Authority SOA query...