When ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_internal function has a heap out of bounds read vulnerability. An attacker can leak information on the heap by constructing a zone file payload. https://github.com/NLnetLabs/ldns/issues/50 https://github.com/NLnetLabs/ldns/commit/15d96206996bea969fbc918eb0a4a346f514b9f3
Created ldns tracking bugs for this issue: Affects: fedora-all [bug 2044428]
I cannot close this bug. Someone please close this. It's ancient and old and resolved in all branches years ago