VulnerableCode Package Details - pkg:alpm/archlinux/c-ares@1.12.0-1

Search for packages

Vulnerability	Summary	Fixed by
VCID-xk13-p8qc-aaae Aliases: CVE-2017-1000381	The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way.	1.13.0-1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-xk13-p8qc-aaae
Aliases:
CVE-2017-1000381

The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way.

1.13.0-1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-kh8m-p7pa-aaap	Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.	CVE-2016-5180

Vulnerability

Summary

Aliases

VCID-kh8m-p7pa-aaap

Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.

CVE-2016-5180

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:58.629311+00:00	Arch Linux Importer	Affected by	VCID-xk13-p8qc-aaae	https://security.archlinux.org/AVG-315	36.0.0
2025-03-28T07:46:19.585677+00:00	Arch Linux Importer	Fixing	VCID-kh8m-p7pa-aaap	https://security.archlinux.org/AVG-37	36.0.0
2024-12-20T03:18:59.776538+00:00	Arch Linux Importer	Affected by	VCID-xk13-p8qc-aaae	https://security.archlinux.org/AVG-315	35.0.0
2024-12-20T03:18:58.331346+00:00	Arch Linux Importer	Fixing	VCID-kh8m-p7pa-aaap	https://security.archlinux.org/AVG-37	35.0.0
2024-09-18T02:02:20.321987+00:00	Arch Linux Importer	Affected by	VCID-xk13-p8qc-aaae	https://security.archlinux.org/AVG-315	34.0.1
2024-09-18T02:01:32.431848+00:00	Arch Linux Importer	Fixing	VCID-kh8m-p7pa-aaap	https://security.archlinux.org/AVG-37	34.0.1
2024-08-12T09:47:34.571527+00:00	Arch Linux Importer	Affected by	VCID-xk13-p8qc-aaae	https://security.archlinux.org/AVG-315	34.0.0rc4
2024-08-12T09:47:34.507812+00:00	Arch Linux Importer	Fixing	VCID-kh8m-p7pa-aaap	https://security.archlinux.org/AVG-37	34.0.0rc4
2024-01-03T22:28:21.998057+00:00	Arch Linux Importer	Affected by	VCID-xk13-p8qc-aaae	https://security.archlinux.org/AVG-315	34.0.0rc1
2024-01-03T22:27:40.872209+00:00	Arch Linux Importer	Fixing	VCID-kh8m-p7pa-aaap	https://security.archlinux.org/AVG-37	34.0.0rc1