Medium severity5.9NVD Advisory· Published Aug 22, 2023· Updated Jun 17, 2026
CVE-2020-22217
CVE-2020-22217
Description
Buffer overflow vulnerability in c-ares before 1_16_1 thru 1_17_0 via function ares_parse_soa_reply in ares_parse_soa_reply.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- osv-coords6 versionspkg:rpm/almalinux/c-arespkg:rpm/almalinux/c-ares-develpkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 1.13.0-9.el8_9.1+ 5 more
- (no CPE)range: < 1.13.0-9.el8_9.1
- (no CPE)range: < 1.13.0-9.el8_9.1
- (no CPE)range: < 1.9.1-9.18.1
- (no CPE)range: < 1.9.1-9.18.1
- (no CPE)range: < 1.9.1-9.18.1
- (no CPE)range: < 1.9.1-9.18.1
Patches
Vulnerability mechanics
References
2- github.com/c-ares/c-ares/issues/333nvdExploitIssue TrackingPatch
- lists.debian.org/debian-lts-announce/2023/09/msg00014.htmlnvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.