[Bug 1629085] Re: CVE-2016-5180: out-of-bounds write in ares_create_query and ares_mkquery

Launchpad Bug Tracker Wed, 30 Nov 2016 10:17:17 -0800

This bug was fixed in the package c-ares - 1.11.0-1ubuntu0.1

---------------
c-ares (1.11.0-1ubuntu0.1) yakkety-security; urgency=medium


  * SECURITY UPDATE: denial of service and possible execution via hostname
    with an escaped trailing dot (LP: #1629085)
    - debian/patches/CVE-2016-5180.patch: properly handle escaped dot in
      ares_create_query.c.
    - CVE-2016-5180

 -- Marc Deslauriers <[email protected]>  Thu, 06 Oct 2016
10:08:23 -0400

** Changed in: c-ares (Ubuntu Yakkety)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1629085

Title:
  CVE-2016-5180: out-of-bounds write in ares_create_query and
  ares_mkquery

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/c-ares/+bug/1629085/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1629085] Re: CVE-2016-5180: out-of-bounds write in ares_create_query and ares_mkquery

Reply via email to