Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Aug 22, 2023· Updated Oct 3, 2024

CVE-2020-22217

CVE-2020-22217

Description

Buffer overflow vulnerability in c-ares before 1_16_1 thru 1_17_0 via function ares_parse_soa_reply in ares_parse_soa_reply.c.

Affected products

7

c-ares/c-aresdescription
osv-coords6 versions
pkg:rpm/almalinux/c-ares pkg:rpm/almalinux/c-ares-devel pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 1.13.0-9.el8_9.1+ 5 more
- (no CPE)range: < 1.13.0-9.el8_9.1
- (no CPE)range: < 1.13.0-9.el8_9.1
- (no CPE)range: < 1.9.1-9.18.1
- (no CPE)range: < 1.9.1-9.18.1
- (no CPE)range: < 1.9.1-9.18.1
- (no CPE)range: < 1.9.1-9.18.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

lists.debian.org/debian-lts-announce/2023/09/msg00014.htmlmitremailing-list
github.com/c-ares/c-ares/issues/333mitre

News mentions

0

No linked articles in our index yet.