CVE-2007-3116

Description

Memory leak in server/MaraDNS.c in MaraDNS 1.2.12.06 and 1.3.05 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, a different set of affected versions than CVE-2007-3114 and CVE-2007-3115.

How to fix CVE-2007-3116

To remediate CVE-2007-3116, upgrade the affected package to a fixed version below.

• Debian/maradns—upgrade to 1.2.12.06-1 or later

Is CVE-2007-3116 being exploited?

Low — EPSS is 0.7%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 1.2.12.06-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2007-3116