Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 448
Alerts This Week
Warning Icon 1 448

Fedora 27: ldns Security Update FEDORA-2017-ffa8601413 Critical Exploit

fedora
Calendar Grey November 21, 2017
Dist Fedora Esm H88
Addresses vulnerabilities related to memory corruption in ldns on Fedora 27, improving overall software security and reliability.
Fix memory corruption in ldns_str2rdf_long_str, ldns_rr_new_frm_fp_l (#1511046)

Summary

ldns is a library with the aim to simplify DNS programming in C. All

low-level DNS/DNSSEC operations are supported. We also define a higher

level API which allows a programmer to (for instance) create or sign

packets.

Fix memory corruption in ldns_str2rdf_long_str, ldns_rr_new_frm_fp_l (#1511046)

[ 1 ] Bug #1510985 - ldns: Memory corruption in ldns_rr_new_frm_fp_l

https://bugzilla.redhat.com/show_bug.cgi?id=1510985

[ 2 ] Bug #1510993 - ldns: Memory corruption in ldns_str2rdf_long_str

https://bugzilla.redhat.com/show_bug.cgi?id=1510993

su -c 'dnf upgrade ldns' at the command line.

For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 27
Version: 1.7.0
Release: 9.fc27
Summary: Low-level DNS(SEC) library with API

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.