c-ares-1.10.0-3.1.0.1.el7.AXS7
エラータID: AXSA:2025-10896:01
Release date:
Friday, September 26, 2025 - 10:43
Subject:
c-ares-1.10.0-3.1.0.1.el7.AXS7
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
c-ares is a C library that performs DNS requests and name resolves
asynchronously. c-ares is a fork of the library named 'ares', written
by Greg Hudson at MIT.
Security Fix(es):
* CVE-2016-5180: fix heap-based buffer overflow in the ares_create_query
causing DoS
CVE(s):
CVE-2016-5180
Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.
Solution:
Update packages.
CVEs:
CVE-2016-5180
Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.
Heap-based buffer overflow in the ares_create_query function in c-ares 1.x before 1.12.0 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly execute arbitrary code via a hostname with an escaped trailing dot.
Additional Info:
N/A
Download:
Asianux Server 7 for x86_64
- c-ares-1.10.0-3.1.0.1.el7.AXS7.i686.rpm
MD5: e5c74f0d92ad34fb7a58d729303512ec
SHA-256: 4a34fd2eb25bc92caae30a63e936edf5c803c3c28d0cbc2c17e37640da7535be
Size: 77.59 kB - c-ares-1.10.0-3.1.0.1.el7.AXS7.x86_64.rpm
MD5: f07afefa88cac984d498e6274a81e041
SHA-256: 0213ef0c6e913584b73e0a8273a9d330291a13a0d8b43bf0367a1ce552094095
Size: 77.46 kB - c-ares-devel-1.10.0-3.1.0.1.el7.AXS7.i686.rpm
MD5: 18e6732f998f09b081369b9e4a1928de
SHA-256: 4ffd770700d60f5e06393124bde44cf92158c404eacc5ba9b1348a615ba076dc
Size: 71.71 kB - c-ares-devel-1.10.0-3.1.0.1.el7.AXS7.x86_64.rpm
MD5: fcdd07a39de18cc752b201cf9d0375de
SHA-256: 1b297ba094cf8a6a6040f5cdc2423afda8f1e2ce86b0dbcfe747d8393d65e411
Size: 71.68 kB