漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
It was discovered that c-ares incorrectly handled certain hostnames.
漏洞危害
A remote attacker could use this issue to cause applications using c-ares to crash, resulting in a denial of service, or possibly execute arbitrary code.
解决方案
Refer to Ubuntu advisory USN-3143-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3143-1: 14.04 (Kylin) on src (libc-ares2)
USN-3143-1: 16.10 (Yakkety) on src (libc-ares2)
0day
文章评论