CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
74.3%
Leon Weber discovered that the ldns-keygen tool incorrectly set permissions
on private keys. A local attacker could possibly use this issue to obtain
generated private keys. This issue only applied to Ubuntu 14.04 LTS.
(CVE-2014-3209)
Stephan Zeisberg discovered that ldns incorrectly handled memory when
processing data. A remote attacker could use this issue to cause ldns to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2017-1000231, CVE-2017-1000232)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 17.10 | noarch | libldns2 | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | ldnsutils | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | ldnsutils-dbgsym | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | libldns-dev | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | libldns2-dbgsym | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | python-ldns | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.10 | noarch | python-ldns-dbgsym | < 1.7.0-1ubuntu1.17.10.1 | UNKNOWN |
Ubuntu | 17.04 | noarch | libldns2 | < 1.7.0-1ubuntu1.17.04.1 | UNKNOWN |
Ubuntu | 17.04 | noarch | ldnsutils | < 1.7.0-1ubuntu1.17.04.1 | UNKNOWN |
Ubuntu | 17.04 | noarch | ldnsutils-dbgsym | < 1.7.0-1ubuntu1.17.04.1 | UNKNOWN |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
74.3%