CRITICAL9.8CVE-2017-1000232A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors. from 0, < 1.7.0-4
from 0, < 1.6.13-1+deb7u2
from 0, < 1.7.0-1+deb9u1
CRITICAL9.8ldns - security update
from 0, < 1.7.0-4
HIGH8.2NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as (stub) resolver over UDP, lacks matching the query d…
from 0
HIGH7.5When a zone file in ldns 1.7.1 is parsed, the function ldns_nsec3_salt_data is too trusted for the length value obtained from the zone file.
from 0
MEDIUM6.5When ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_internal function has a heap out of bounds read vulnerability.
from 0
—The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain…
from 0, < 1.6.17-4
—ldns - buffer overflow
from 0, < 1.6.6-2+squeeze1
—ldns - buffer overflow
from 0, < 1.6.11-1
—ldns - arbitrary code execution
from 0, < 1.5.1-1
—ldns - arbitrary code execution
from 0, < 1.4.0-1+lenny1