CVE-2019-13951

on github

Published

July 18, 2019

Severity

CVSS v3:

9.8 CRITICAL

CVSS v2:

7.5 HIGH

Description

The set_ipv4() function in zscan_rfc1035.rl in gdnsd 3.x before 3.2.1 has a stack-based buffer overflow via a long and malformed IPv4 address in zone data.

References

https://github.com/gdnsd/gdnsd/issues/185

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:gdnsd:gdnsd:3.2.0:::::::*	n/a	n/a	3.2.0

External Links

NVD - CVE-2019-13951