Vulnerability Description
musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dns_parse_callback in network/lookup_name.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Musl-Libc | Musl | <= 1.1.6 |
Related Weaknesses (CWE)
References
- http://git.musl-libc.org/cgit/musl/commit/?id=45ca5d3fcb6f874bf5ba55d0e9651cef68Vendor Advisory
- http://git.musl-libc.org/cgit/musl/tree/WHATSNEWVendor Advisory
- http://openwall.com/lists/oss-security/2017/10/19/5Mailing ListMitigationThird Party Advisory
- http://git.musl-libc.org/cgit/musl/commit/?id=45ca5d3fcb6f874bf5ba55d0e9651cef68Vendor Advisory
- http://git.musl-libc.org/cgit/musl/tree/WHATSNEWVendor Advisory
- http://openwall.com/lists/oss-security/2017/10/19/5Mailing ListMitigationThird Party Advisory
FAQ
What is CVE-2017-15650?
CVE-2017-15650 is a vulnerability with a CVSS score of 7.5 (HIGH). musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dns_parse_callback in network/lookup_name.c does not restrict the number of addresses, and thus an attacker can provide an...
How severe is CVE-2017-15650?
CVE-2017-15650 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-15650?
Check the references section above for vendor advisories and patch information. Affected products include: Musl-Libc Musl.