First published: Wed Mar 06 2024(Updated: )
Vojtěch Vobr discovered that c-ares incorrectly handled user input from local configuration files. An attacker could possibly use this issue to cause a denial of service via application crash.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libc-ares2 | <1.19.1-3ubuntu0.1 | 1.19.1-3ubuntu0.1 |
Ubuntu Ubuntu | =23.10 | |
All of | ||
ubuntu/libc-ares2 | <1.18.1-1ubuntu0.22.04.3 | 1.18.1-1ubuntu0.22.04.3 |
Ubuntu Ubuntu | =22.04 | |
All of | ||
ubuntu/libc-ares2 | <1.15.0-1ubuntu0.5 | 1.15.0-1ubuntu0.5 |
Ubuntu Ubuntu | =20.04 | |
All of | ||
ubuntu/libc-ares2 | <1.14.0-1ubuntu0.2+esm2 | 1.14.0-1ubuntu0.2+esm2 |
Ubuntu Ubuntu | =18.04 | |
All of | ||
ubuntu/libc-ares2 | <1.10.0-3ubuntu0.2+esm3 | 1.10.0-3ubuntu0.2+esm3 |
Ubuntu Ubuntu | =16.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.