返回 CVE 浏览器

CVE-2017-9104

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0810%

EPSS Percentile30.61th

Published2020年6月18日

Last Modified2024年11月21日

Vulnerability Description

An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if a compression pointer loop is encountered.

Affected Platforms (CPE)

📦

Gnu

Adns

< 1.5.2

💻

Opensuse

Leap

= 15.1

💻

Fedoraproject

Fedora

= 31

💻

Fedoraproject

Fedora

= 32

References & Advisories

🔗 http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00037.html

🔗 http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git

🔗 http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git%3Ba=blob%3Bf=changelog

🔗 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TRVHN3GGVNQWAOL3PWC5FLAV7HUESLZR/

🔗 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UGFZ4SPV6KFQK6ZNUZFB5Y32OYFOM5YJ/

🔗 https://www.chiark.greenend.org.uk/pipermail/adns-announce/2020/000004.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00037.html

🔗 http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git

相关漏洞威胁

CVE-2017-91039.8

An issue was discovered in adns before 1.5.2. pap_mailbox822 does not properly check st from adns__findlabel_next. Without this, a...

CVE-2017-91099.8

An issue was discovered in adns before 1.5.2. It fails to ignore apparent answers before the first RR that was found the first tim...

CVE-2020-367059.8

The Adning Advertising plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the _ni...

CVE-2017-91058.8

An issue was discovered in adns before 1.5.2. It corrupts a pointer when a nameserver speaks first because of a wrong number of po...

CVE-2017-9104 Detail & Impact Analysis | CVSS 9.8 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space