Unrated severityNVD Advisory· Published Feb 23, 2024· Updated Feb 13, 2025

c-ares out of bounds read in ares__read_line()

CVE-2024-25629

Description

c-ares is a C library for asynchronous DNS requests. ares__read_line() is used to parse local configuration files such as /etc/resolv.conf, /etc/nsswitch.conf, the HOSTALIASES file, and if using a c-ares version prior to 1.27.0, the /etc/hosts file. If any of these configuration files has an embedded NULL character as the first character in a new line, it can lead to attempting to read memory prior to the start of the given buffer which may result in a crash. This issue is fixed in c-ares 1.27.0. No known workarounds exist.

Affected products

osv-coords31 versions
pkg:apk/chainguard/c-ares pkg:apk/chainguard/c-ares-dev pkg:apk/chainguard/c-ares-doc pkg:apk/wolfi/c-ares pkg:apk/wolfi/c-ares-dev pkg:apk/wolfi/c-ares-doc pkg:rpm/almalinux/c-ares pkg:rpm/almalinux/c-ares-devel pkg:rpm/almalinux/nodejs pkg:rpm/almalinux/nodejs-devel pkg:rpm/almalinux/nodejs-docs pkg:rpm/almalinux/nodejs-full-i18n pkg:rpm/almalinux/nodejs-libs pkg:rpm/almalinux/nodejs-nodemon pkg:rpm/almalinux/nodejs-packaging pkg:rpm/almalinux/nodejs-packaging-bundler pkg:rpm/almalinux/npm pkg:rpm/opensuse/c-ares&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/c-ares&distro=openSUSE%20Leap%20Micro%205.3 pkg:rpm/opensuse/c-ares&distro=openSUSE%20Leap%20Micro%205.4 pkg:rpm/opensuse/c-ares&distro=openSUSE%20Tumbleweed pkg:rpm/suse/c-ares&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/c-ares&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/c-ares&distro=SUSE%20Linux%20Enterprise%20Micro%205.3 pkg:rpm/suse/c-ares&distro=SUSE%20Linux%20Enterprise%20Micro%205.4 pkg:rpm/suse/c-ares&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/c-ares&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/libcares2&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5
< 1.27.0-r0+ 30 more
- (no CPE)range: < 1.27.0-r0
- (no CPE)range: < 1.27.0-r0
- (no CPE)range: < 1.27.0-r0
- (no CPE)range: < 1.27.0-r0
- (no CPE)range: < 1.27.0-r0
- (no CPE)range: < 1.27.0-r0
- (no CPE)range: < 1.19.1-2.el9_4
- (no CPE)range: < 1.19.1-2.el9_4
- (no CPE)range: < 1:20.12.2-2.module_el8.9.0+3827+11b91f3e
- (no CPE)range: < 1:20.12.2-2.module_el8.9.0+3827+11b91f3e
- (no CPE)range: < 1:20.12.2-2.module_el8.9.0+3827+11b91f3e
- (no CPE)range: < 1:20.12.2-2.module_el8.9.0+3827+11b91f3e
- (no CPE)range: < 1:16.20.2-8.el9_4
- (no CPE)range: < 3.0.1-1.module_el8.9.0+3731+490e3ce5
- (no CPE)range: < 2021.06-4.module_el8.9.0+3684+11b9e959
- (no CPE)range: < 2021.06-4.module_el8.9.0+3684+11b9e959
- (no CPE)range: < 1:10.5.0-1.20.12.2.2.module_el8.9.0+3827+11b91f3e
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.27.0-1.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.19.1-150000.3.26.1
- (no CPE)range: < 1.9.1-9.21.1
- (no CPE)range: < 1.9.1-9.21.1
- (no CPE)range: < 1.9.1-9.21.1
- (no CPE)range: < 1.9.1-9.21.1
C Ares/C Arescpe-rescue
Range: < 1.27.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000