Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
When a zone file in ldns 1.7.1 is parsed, the function ldns_nsec3_salt_data is too trusted for the length value obtained from the zone file. When the memcpy is copied, the 0xfe - ldns_rdf_size(salt_rdf) byte data can be copied, causing heap overflow information leakage.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nlnet Labs ldns 缓冲区错误漏洞
Vulnerability Description
NLnet Labs ldns是荷兰NLnet Labs(Nlnet Labs)基金会的一个便于DNS工具编程的DNS库。 Nlnet Labs ldns 存在安全漏洞,该漏洞源于 ldns 在解析区域文件时,函数 ldns_nsec3_salt_data 对于从区域文件中获取的长度值来说过于信任。 复制memcpy时,可以复制0xfe - ldns_rdf_size(salt_rdf)字节数据,导致堆溢出信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A