CVE-2017-1000232

Published: 16 November 2017

A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.

Priority

Medium

CVSS 3 base score: 9.8

Status

Package Release Status
ldns
Launchpad, Ubuntu, Debian
Upstream Needed

Ubuntu 16.04 ESM (Xenial Xerus)
Released (1.6.17-8ubuntu0.1)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [1.6.17-1ubuntu0.1])
Patches:
Upstream: https://git.nlnetlabs.nl/ldns/commit/?id=3bdeed02505c9bbacb3b64a97ddcb1de967153b7