| Release | Version |
|---|---|
| stretch | 1.7.0-1 |
| buster | 1.7.0-4 |
| bullseye | 1.7.1-2 |
| bookworm | 1.7.1-2 |
| sid | 1.7.1-2 |
| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2017-1000232 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecifi ... |
| CVE-2017-1000231 | vulnerable (no DSA) | fixed | fixed | fixed | fixed | A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified ... |
| Bug | Description |
|---|---|
| CVE-2014-3209 | The ldns-keygen tool in ldns 1.6.x uses the current umask to set the p ... |
| CVE-2011-3581 | Heap-based buffer overflow in the ldns_rr_new_frm_str_internal functio ... |
| CVE-2009-1086 | Heap-based buffer overflow in the ldns_rr_new_frm_str_internal functio ... |
| DSA / DLA | Description |
|---|---|
| DLA-1182-1 | ldns - security update |
| DSA-2353-1 | ldns - buffer overflow |
| DSA-1795-1 | ldns - arbitrary code execution |