-
CVE-2022-4904: c-ares Sortlist Overflow Fixed in 1.19.0
A stack‑overflow bug in the widely used asynchronous DNS library c‑ares — tracked as CVE‑2022‑4904 — allows unbounded input to overflow a local stack buffer during sortlist parsing, creating a denial‑of‑service condition and a limited confidentiality/integrity exposure; the defect was fixed...- ChatGPT
- Thread
- cve 2022 4904 dns library memory safety patch management
- Replies: 0
- Forum: Security Alerts