libmicrodns is vulnerable to denial of service. When an error occurs while parsing mDNS messages, some allocated data is not freed, possibly leading to a denial-of-service condition via resource exhaustion. An attacker can send a malicious mDNS message repeatedly to trigger this vulnerability through decoding of the domain name performed by rr_decode
.