High severity7.8NVD Advisory· Published Jul 16, 2018· Updated Jun 17, 2026
CVE-2018-1046
CVE-2018-1046
Description
pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay. In the dnsreplay tool provided with PowerDNS Authoritative, replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution. This buffer overflow only occurs when the -ecs-stamp option of dnsreplay is used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- Range: <4.1.2
- osv-coords4 versionspkg:rpm/opensuse/pdns&distro=openSUSE%20Tumbleweedpkg:rpm/suse/pdns&distro=HPE%20Helion%20OpenStack%208pkg:rpm/suse/pdns&distro=SUSE%20OpenStack%20Cloud%208pkg:rpm/suse/pdns&distro=SUSE%20Package%20Hub%2012%20SP1
< 4.5.1-1.5+ 3 more
- (no CPE)range: < 4.5.1-1.5
- (no CPE)range: < 4.1.2-3.3.1
- (no CPE)range: < 4.1.2-3.3.1
- (no CPE)range: < 4.1.2-8.1
Patches
Vulnerability mechanics
References
1- bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
News mentions
0No linked articles in our index yet.