CVE-2011-3581

EPSS 5.2%

ldns - buffer overflow

發布日:2011/11/4修改日:2026/5/29

描述

Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type containing input that is longer than a specified length.

受影響套件(2)

Debian/ldnsfrom 0, < 1.6.11-1
Debian/ldnsfrom 0, < 1.6.6-2+squeeze1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3581