Lucene search
+L

35 matches found

OSV
OSV
added 2026/06/18 9:4 p.m.3 views

OPENSUSE-SU-2026:21093-1 Security update for ldns

This update for ldns fixes the following issue - CVE-2026-10846: when ldns is used by applications for stub resolving, it does not sufficiently verify that received responses belong to a sent query bsc1267670...

8.2CVSS5.8AI score0.00147EPSS
Exploits0References2
OSV
OSV
added 2026/06/18 1:33 p.m.7 views

USN-8449-1 ldns vulnerability

Pablo Ruiz discovered that ldns did not properly validate DNS responses when used as a stub resolver over UDP. A remote attacker could possibly use this issue to inject arbitrary DNS responses...

8.2CVSS5.6AI score0.00147EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2026/06/18 1:33 p.m.17 views

USN-8449-1: ldns vulnerability

Pablo Ruiz discovered that ldns did not properly validate DNS responses when used as a stub resolver over UDP. A remote attacker could possibly use this issue to inject arbitrary DNS responses...

8.2CVSS5.6AI score0.00147EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/06/12 2:32 a.m.14 views

SUSE CVE-2026-10846

NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as stub resolver over UDP, lacks matching the query destination address and port with the response source address and port. Furthermore not the query ID, neither the question of the query is matched with that of t...

7.5CVSS5.4AI score0.00147EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-10846

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as stub resolver over UDP, lacks matching the query destination address and...

8.2CVSS6.1AI score0.00147EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.10 views

FreeBSD : FreeBSD -- Insufficient response validation in the ldns stub resolver (fc0c7763-6477-11f1-958d-bc241121aa0a)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the fc0c7763-6477-11f1-958d-bc241121aa0a advisory. When used as a stub resolver over UDP, ldns failed to verify that a received response belonged to the...

8.2CVSS5.6AI score0.00147EPSS
Exploits0References2
OSV
OSV
added 2026/06/10 7:16 a.m.3 views

CVE-2026-10846

NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as stub resolver over UDP, lacks matching the query destination address and port with the response source address and port. Furthermore not the query ID, neither the question of the query is matched with that of t...

7.5CVSS5.9AI score0.00147EPSS
Exploits0References2
OSV
OSV
added 2026/06/09 4:0 p.m.8 views

UBUNTU-CVE-2026-10846

NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as stub resolver over UDP, lacks matching the query destination address and port with the response source address and port. Furthermore not the query ID, neither the question of the query is matched with that of t...

8.2CVSS5.3AI score0.00147EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/06/09 12:0 a.m.9 views

FreeBSD Security Advisory - FreeBSD-SA-26:36.ldns

FreeBSD Security Advisory - When used as a stub resolver over UDP, ldns failed to verify that a received response belonged to the outstanding query. It did not check that the response source address and port matched the query destination, that the transaction ID matched, or that the question...

8.2CVSS5.4AI score0.00147EPSS
Exploits0
FreeBSD
FreeBSD
added 2026/06/09 12:0 a.m.9 views

FreeBSD -- Insufficient response validation in the ldns stub resolver

Problem Description: When used as a stub resolver over UDP, ldns failed to verify that a received response belonged to the outstanding query. It did not check that the response source address and port matched the query destination, that the transaction ID matched, or that the question section of...

8.2CVSS5.6AI score0.00147EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2017-3716

Malware in sbrugna...

5.9CVSS7.6AI score0.01881EPSS
Exploits0References11
OSV
OSV
added 2025/03/17 8:16 p.m.13 views

RLSA-2024:9423 Moderate: python-dns security update

The python-dns package contains the dnslib module that implements a DNS client and additional modules that define certain symbolic constants used by DNS, such as dnstype, dnsclass and dnsopcode. Security Fixes: dnspython: denial of service in stub resolver CVE-2023-29483 For more details about th...

5.9CVSS6.8AI score0.01857EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/11/12 9:22 a.m.6 views

dnspython: denial of service in stub resolver

The dnspython stub resolver is vulnerable to a denial of service DoS risk if an attacker sends a malicious response forged with the correct address and port before a legitimate one arrives on the UDP port used by dnspython for the query. In such cases, dnspython could either switch to another...

7CVSS7.4AI score0.01857EPSS
Exploits1References5
OSV
OSV
added 2024/11/12 12:0 a.m.22 views

ALSA-2024:9423 Moderate: python-dns security update

The python-dns package contains the dnslib module that implements a DNS client and additional modules that define certain symbolic constants used by DNS, such as dnstype, dnsclass and dnsopcode. Security Fixes: dnspython: denial of service in stub resolver CVE-2023-29483 For more details about th...

7CVSS6.7AI score0.01857EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/06/27 1:6 p.m.4 views

dnspython: denial of service in stub resolver

The dnspython stub resolver is vulnerable to a denial of service DoS risk if an attacker sends a malicious response forged with the correct address and port before a legitimate one arrives on the UDP port used by dnspython for the query. In such cases, dnspython could either switch to another...

7CVSS7.4AI score0.01857EPSS
Exploits1References5
Rockylinux
Rockylinux
added 2024/06/14 1:59 p.m.82 views

python-dns security update

An update is available for python-dns. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The python-dns package contains the dnslib module that implements a DNS...

7CVSS6.8AI score0.01857EPSS
Exploits1
OSV
OSV
added 2024/06/14 1:59 p.m.35 views

RLSA-2024:3275 Moderate: python-dns security update

The python-dns package contains the dnslib module that implements a DNS client and additional modules that define certain symbolic constants used by DNS, such as dnstype, dnsclass and dnsopcode. Security Fixes: dnspython: denial of service in stub resolver CVE-2023-29483 For more details about th...

7CVSS6.8AI score0.01857EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/05/22 11:45 a.m.8 views

dnspython: denial of service in stub resolver

The dnspython stub resolver is vulnerable to a denial of service DoS risk if an attacker sends a malicious response forged with the correct address and port before a legitimate one arrives on the UDP port used by dnspython for the query. In such cases, dnspython could either switch to another...

7CVSS7.4AI score0.01857EPSS
Exploits1References5
AlmaLinux
AlmaLinux
added 2024/05/22 12:0 a.m.60 views

Moderate: python-dns security update

The python-dns package contains the dnslib module that implements a DNS client and additional modules that define certain symbolic constants used by DNS, such as dnstype, dnsclass and dnsopcode. Security Fixes: dnspython: denial of service in stub resolver CVE-2023-29483 For more details about th...

7CVSS6.8AI score0.01857EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2024/04/12 7:23 a.m.213 views

CVE-2023-29483

The dnspython stub resolver is vulnerable to a denial of service DoS risk if an attacker sends a malicious response forged with the correct address and port before a legitimate one arrives on the UDP port used by dnspython for the query. In such cases, dnspython could either switch to another...

5.9CVSS5.9AI score0.01857EPSS
Exploits1References4
Rows per page
Query Builder