CVE-2018-17419
HIGHdns_library < 1.0.10 - Denial of Service via ParseZone Parsing Error
Title source: llmDescription
An issue was discovered in setTA in scan_rr.go in the Miek Gieben DNS library before 1.0.10 for Go. A dns.ParseZone() parsing error causes a segmentation violation, leading to denial of service.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/miekg/dns/issues/742
Scores
CVSS v3
7.5
EPSS
0.0176
EPSS Percentile
75.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (2)
dns_library_project/dns_library
< 1.0.10
miekg/dns
0 - 1.0.10Go
Published
Mar 07, 2019
Tracked Since
Feb 18, 2026