Adns Security Vulnerabilities and Issues — Adns CVE List

GnuAdns

8 matches found

CVE•added 2020/06/18 2:53 p.m.•177 views

CVE-2017-9103

CVE-2017-9103 affects adns before 1.5.2. The issue: pap_mailbox822 does not properly check st from adns__findlabel_next, allowing an uninitialized stack value to be used as the first label length. This can cause a crash, memory leakage, excessive memory allocation, or buffer overruns, depending o...

9.8CVSS9AI score0.0205EPSS

CVE•added 2020/06/18 1:6 p.m.•164 views

CVE-2017-9107

CVE-2017-9107 affects adns prior to 1.5.2. When a domain ends with a backslash and qdparselabel is invoked with adns_qf_quoteok_query, the input buffer may be overread, causing the code to process arbitrary heap data as part of the query domain. This could lead to memory exhaustion or a crash, i....

7.5CVSS8.4AI score0.01848EPSS

CVE•added 2020/06/18 2:50 p.m.•158 views

CVE-2017-9104

CVE-2017-9104 affects the adns library prior to version 1.5.2. The issue is a hang/CPU‑utilization DoS when a compression pointer loop is encountered, as described in multiple connected advisories. Remediation in publicly linked docs is to update to adns 1.5.2 or apply the vendor patch referenced...

9.8CVSS9.2AI score0.02356EPSS

CVE•added 2020/06/18 1:9 p.m.•153 views

CVE-2017-9105

CVE-2017-9105 affects the adns library (pre-1.5.2). The issue is that it corrupts a pointer when a nameserver speaks first due to an incorrect number of pointer dereferences, and the bug may be exploitable for remote code execution. Public assessments across multiple advisories describe this as e...

8.8CVSS9.3AI score0.03603EPSS

CVE•added 2020/06/18 1:2 p.m.•152 views

CVE-2017-9109

The CVE refers to adns before 1.5.2. The root cause is improper handling of DNS answers when interleaving responses for a CNAME, causing the resolver to examine rules before the first RR and potentially overrunning heap-allocated answer data. The published description indicates the fix changes th...

9.8CVSS9.1AI score0.0205EPSS

CVE•added 2020/06/18 1:5 p.m.•151 views

CVE-2017-9108

CVE-2017-9108 affects adns prior to 1.5.2. The issue arises in adnshost due to mishandling a missing final newline on a stdin read, which can cause reading one byte beyond the buffer and may crash or leak that byte. Publicly reported in multiple advisories and Nessus/OpenVAS entries, with fixes d...

7.5CVSS8.1AI score0.02186EPSS

CVE•added 2020/06/18 1:8 p.m.•150 views

CVE-2017-9106

CVE-2017-9106 affects adns up to version 1.5.1 (before 1.5.2). The issue lies in adns_rr_info handling a bogus datap where integer formatting uses a fixed-size buffer; if input is out of the permitted range, a buffer overrun can occur due to sign extension of SOA 32-bit integers. The result is a ...

7.5CVSS8.4AI score0.01876EPSS

CVE•added 2008/09/18 5:47 p.m.•89 views

CVE-2008-4100

CVE-2008-4100 documents a DNS spoofing risk in GNU adns 1.4 and earlier, caused by a fixed source port and sequential transaction IDs for DNS requests. This predictable ID/port behavior makes it easier for remote attackers to spoof DNS responses. The description notes this is a different issue fr...

6.4CVSS6.3AI score0.01492EPSS