Nlnetlabs - Ldns CVE

Filtered by vendor Nlnetlabs Subscribe

Filtered by product Ldns

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-19860	1 Nlnetlabs	1 Ldns	2022-01-27	4.3 MEDIUM	6.5 MEDIUM
When ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_internal function has a heap out of bounds read vulnerability. An attacker can leak information on the heap by constructing a zone file payload.

Vulnerabilities (CVE)