PT-2018-13774 · Powerdns+1 · Powerdns Recursor+1

Andrej Nemec

Publicado

2018-12-03

Atualizado

2024-06-15

CVE-2018-16855

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions PowerDNS Recursor versions prior to 4.1.8

Description A remote attacker can trigger an out-of-bounds memory read by sending a DNS query, which can cause a crash while the software computes the hash of the query for a packet cache lookup.

Recommendations For versions prior to 4.1.8, update to version 4.1.8 or later to resolve the issue.

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

CVE-2018-16855

MGASA-2019-0009

OPENSUSE-SU-2018:4062-1

OPENSUSE-SU-2018:4177-1

OPENSUSE-SU-2018_4152-1

OPENSUSE-SU-2024:11157-1

Produtos afetados

Powerdns Recursor

Suse

PT-2018-13774 · Powerdns+1 · Powerdns Recursor+1

CVE-2018-16855

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 50