Back to bug 2044427
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Sandipan Roy | 2022-01-24 15:29:11 UTC | Depends On | 2044428 | |
| Sandipan Roy | 2022-01-24 15:30:05 UTC | Blocks | 2044431 | |
| Sandipan Roy | 2022-01-24 16:17:40 UTC | Summary | CVE-2020-19860 net-libs/ldns: heap overread vulnerability via zone file | CVE-2020-19860 ldns: heap overread vulnerability via zone file |
| RaTasha Tillery-Smith | 2022-02-07 15:10:59 UTC | Depends On | 2051211, 2051210 | |
| Doc Text | A heap out-of-bounds read flaw was found in ldns, specifically within the ldns_rr_new_frm_str_internal function. An attacker could utilize this flaw to leak information on the heap by creating a malicious zone file. | |||
| Fixed In Version | ldns-1.8.0, ldns-1.8.1 | |||
| Doc Text | A heap out-of-bounds read flaw was found in ldns, specifically within the ldns_rr_new_frm_str_internal function. An attacker could utilize this flaw to leak information on the heap by creating a malicious zone file. | A heap out-of-bounds read flaw was found in ldns, specifically within the ldns_rr_new_frm_str_internal function. This flaw allows an attacker to leak information on the heap by creating a malicious zone file. | ||
| Red Hat Bugzilla | 2023-07-07 08:30:25 UTC | Assignee | security-response-team | nobody |
| Petr Menšík | 2023-07-11 06:34:30 UTC | Flags | needinfo?(saroy) | |
| Sandipan Roy | 2023-07-16 16:43:41 UTC | Flags | needinfo?(saroy) | |
| Resolution | --- | ERRATA | ||
| Status | NEW | CLOSED | ||
| Last Closed | 2023-07-16 16:43:41 UTC |
Back to bug 2044427