CVE-2011-3581
ldns - buffer overflow
EPSS 5.2%
Description
Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type containing input that is longer than a specified length.
How to fix CVE-2011-3581
To remediate CVE-2011-3581, upgrade the affected package to a fixed version below.
- Debian/ldns—upgrade to 1.6.11-1 or later
- Debian/ldns—upgrade to 1.6.6-2+squeeze1 or later
Is CVE-2011-3581 being exploited?
Moderate — EPSS is 5.2%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (2)
- from 0, < 1.6.11-1
- from 0, < 1.6.6-2+squeeze1