Lucene search
PRIOn knowledge basePRION:CVE-2016-7069HistorySep 11, 2018 - 1:29 p.m.
Null pointer dereference
2018-09-1113:29:00
PRIOn knowledge base
www.prio-n.com
4
An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when parsing responses from a backend. When dnsdist is configured to add EDNS Client Subnet to a query, the response may contain an EDNS0 OPT record that has to be removed before forwarding the response to the initial client. On a 32-bit system, the pointer arithmetic used when parsing the received response to remove that record might trigger an undefined behavior leading to a crash.
Related
cve
cve
CVE-2016-7069
2018-09-11 13:29:00
cvelist
cvelist
CVE-2016-7069
2018-09-11 13:00:00
ubuntucve
ubuntucve
CVE-2016-7069
2018-09-11 00:00:00
nvd
nvd
CVE-2016-7069
2018-09-11 13:29:00
debiancve
debiancve
CVE-2016-7069
2018-09-11 13:29:00
nessus
nessus
Fedora 26 : dnsdist (2017-487fae29b4)
2017-09-01 00:00:00
FreeBSD : dnsdist -- multiple vulnerabilities (198d82f3-8777-11e7-950a-e8e0b747a45a)
2017-08-23 00:00:00
Fedora 25 : dnsdist (2017-98e8569b33)
2017-09-01 00:00:00
freebsd
freebsd
dnsdist -- multiple vulnerabilities
2017-08-21 00:00:00
openvas
openvas
Fedora Update for dnsdist FEDORA-2017-98e8569b33
2017-09-02 00:00:00
Fedora Update for dnsdist FEDORA-2017-487fae29b4
2017-09-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2777-1)
2023-07-05 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: dnsdist-1.2.0-1.fc25
2017-09-01 03:24:09
[SECURITY] Fedora 26 Update: dnsdist-1.2.0-1.fc26
2017-08-31 22:54:58