gdnsd/gdnsd on GitHub
Authoritative DNS Server
CVE History
CVE | Published | CVSS v2 | CVSS v3 |
---|---|---|---|
CVE-2019-13951 | 9.8 CRITICAL | 7.5 HIGH | |
The set_ipv4() function in zscan_rfc1035.rl in gdnsd 3.x before 3.2.1 has a stack-based buffer overflow via a long and malformed IPv4 address in zone data. | |||
CVE-2019-13952 | 9.8 CRITICAL | 7.5 HIGH | |
The set_ipv6() function in zscan_rfc1035.rl in gdnsd before 2.4.3 and 3.x before 3.2.1 has a stack-based buffer overflow via a long and malformed IPv6 address in zone data. |