VulnerableCode Package Details - pkg:deb/debian/dnsdist@2.0.2-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-3qce-a24m-yue1 Aliases: CVE-2026-27853	An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a DNSdist using the DNSQuestion:changeName or DNSResponse:changeName methods in custom Lua code. In some cases the rewritten packet might become larger than the initial response and even exceed 65535 bytes, potentially leading to a crash resulting in denial of service.	2.0.3-1 Affected by 0 other vulnerabilities.
VCID-atx2-yc9p-g3c7 Aliases: CVE-2026-24030	An attacker might be able to trick DNSdist into allocating too much memory while processing DNS over QUIC or DNS over HTTP/3 payloads, resulting in a denial of service. In setups with a large quantity of memory available this usually results in an exception and the QUIC connection is properly closed, but in some cases the system might enter an out-of-memory state instead and terminate the process.	2.0.3-1 Affected by 0 other vulnerabilities.
VCID-c7az-aw1f-4yah Aliases: CVE-2026-24029	When the early_acl_drop (earlyACLDrop in Lua) option is disabled (default is enabled) on a DNS over HTTPs frontend using the nghttp2 provider, the ACL check is skipped, allowing all clients to send DoH queries regardless of the configured ACL.	2.0.3-1 Affected by 0 other vulnerabilities.
VCID-gx8g-nvhj-1kak Aliases: CVE-2026-0397	When the internal webserver is enabled (default is disabled), an attacker might be able to trick an administrator logged to the dashboard into visiting a malicious website and extract information about the running configuration from the dashboard. The root cause of the issue is a misconfiguration of the Cross-Origin Resource Sharing (CORS) policy.	2.0.3-1 Affected by 0 other vulnerabilities.
VCID-rf53-w9k3-7ych Aliases: CVE-2026-24028	An attacker might be able to trigger an out-of-bounds read by sending a crafted DNS response packet, when custom Lua code uses newDNSPacketOverlay to parse DNS packets. The out-of-bounds read might trigger a crash, leading to a denial of service, or access unrelated memory, leading to potential information disclosure.	2.0.3-1 Affected by 0 other vulnerabilities.
VCID-szpa-skfv-bygh Aliases: CVE-2026-27854	An attacker might be able to trigger a use-after-free by sending crafted DNS queries to a DNSdist using the DNSQuestion:getEDNSOptions method in custom Lua code. In some cases DNSQuestion:getEDNSOptions might refer to a version of the DNS packet that has been modified, thus triggering a use-after-free and potentially a crash resulting in denial of service.	2.0.3-1 Affected by 0 other vulnerabilities.
VCID-x5p9-vthx-tud8 Aliases: CVE-2026-0396	An attacker might be able to inject HTML content into the internal web dashboard by sending crafted DNS queries to a DNSdist instance where domain-based dynamic rules have been enabled via either DynBlockRulesGroup:setSuffixMatchRule or DynBlockRulesGroup:setSuffixMatchRuleFFI.	2.0.3-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-3qce-a24m-yue1
Aliases:
CVE-2026-27853

An attacker might be able to trigger an out-of-bounds write by sending crafted DNS responses to a DNSdist using the DNSQuestion:changeName or DNSResponse:changeName methods in custom Lua code. In some cases the rewritten packet might become larger than the initial response and even exceed 65535 bytes, potentially leading to a crash resulting in denial of service.