CVE-2017-14339
N/A
N/A
Summary
The DNS packet parser in YADIFA before 2.2.6 does not check for the presence of infinite pointer loops, and thus it is possible to force it to enter an infinite loop. This can cause high CPU usage and makes the server unresponsive.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/yadifa/yadifa/blob/v2.2.6/ChangeLog
- https://www.tarlogic.com/blog/fuzzing-yadifa-dns/
- http://www.debian.org/security/2017/dsa-4001
References
- https://github.com/yadifa/yadifa/blob/v2.2.6/ChangeLog
- https://www.tarlogic.com/blog/fuzzing-yadifa-dns/
- http://www.debian.org/security/2017/dsa-4001
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.