Information on source package ldns

Available versions

ReleaseVersion
buster1.7.0-4
bullseye1.7.1-2
bookworm1.8.1-1
sid1.8.1-1

Open issues

BugbusterbullseyebookwormsidDescription
CVE-2020-19861vulnerable (no DSA)vulnerable (no DSA)fixedfixedWhen a zone file in ldns 1.7.1 is parsed, the function ldns_nsec3_salt ...
CVE-2020-19860vulnerable (no DSA)vulnerable (no DSA)fixedfixedWhen ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_ ...

Resolved issues

BugDescription
CVE-2017-1000232A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecifi ...
CVE-2017-1000231A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified ...
CVE-2014-3209The ldns-keygen tool in ldns 1.6.x uses the current umask to set the p ...
CVE-2011-3581Heap-based buffer overflow in the ldns_rr_new_frm_str_internal functio ...
CVE-2009-1086Heap-based buffer overflow in the ldns_rr_new_frm_str_internal functio ...

Security announcements

DSA / DLADescription
DLA-2910-1ldns - security update
DLA-1182-1ldns - security update
DSA-2353-1ldns - buffer overflow
DSA-1795-1ldns - arbitrary code execution

Search for package or bug name: Reporting problems