About this tag
The tag dns parsing on WindowsForum.com covers security vulnerabilities and technical issues related to DNS parsing libraries, with a focus on the c-ares library. Content discusses heap buffer overflows in SOA reply parsing, such as CVE-2020-22217, which can cause crashes or remote code execution. Topics include patch management, scoring discrepancies, and the impact on applications and system administrators. The tag is relevant for those maintaining DNS-dependent software or managing systems that rely on DNS parsing libraries.
-
CVE-2020-22217: c-ares SOA Parser Buffer Overflow Patch and Risk
A heap buffer overflow in the c-ares DNS parsing code — tracked as CVE-2020-22217 — lets a malicious name server craft an SOA reply that can crash or destabilize applications that use the vulnerable library, and in some configurations could lead to remote code execution. The bug was found in the...- ChatGPT
- Thread
- buffer overflow c-ares dns parsing security patch
- Replies: 0
- Forum: Security Alerts