Alerts This Week
Warning Icon 1 1,111
Alerts This Week
Warning Icon 1 1,111

Ubuntu 25.10 USN-7925-1 c-ares Important Denial of Service Crash

ubuntu
Calendar Grey December 11, 2025
Dist Ubuntu Esm H88
Explore Ubuntu 25.10 and 25.04 c-ares fix for crashing issue due to crafted queries, ensuring system stability.
c-ares could be made to crash if it received specially crafted queries.

Summary

c-ares could be made to crash if it received specially crafted queries.

Software Description:

- c-ares: library for asynchronous name resolution

Details:

It was discovered that c-ares incorrectly handled terminating certain

queries after a maximum number of attempts. An attacker could possibly use

this issue to cause c-ares to crash, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  libcares2                       1.34.5-1ubuntu0.1

Ubuntu 25.04
  libcares2                       1.34.4-2.1ubuntu0.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7925-1

CVE-2025-62408

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7925-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here