Vulnerability CVE-2011-3581

Vulnerability Name:

CVE-2011-3581 (CCN-70022)

Assigned:

2011-08-24

Published:

2011-08-24

Updated:

2016-12-08

Summary:

Heap-based buffer overflow in the ldns_rr_new_frm_str_internal function in ldns before 1.6.11 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Resource Record (RR) with an unknown type containing input that is longer than a specified length.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2011-3581

Source: FEDORA
Type: UNKNOWN
FEDORA-2011-13895

Source: FEDORA
Type: UNKNOWN
FEDORA-2011-13915

Source: FEDORA
Type: UNKNOWN
FEDORA-2011-13929

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2011:1161

Source: CCN
Type: ldns SVN Repository
ldns

Source: CCN
Type: NLnet Labs Web site
Changelog, 1.6.10

Source: CONFIRM
Type: UNKNOWN
http://nlnetlabs.nl/svn/ldns/tags/release-1.6.11/Changelog

Source: MLIST
Type: UNKNOWN
[oss-security] 20110924 CVE request: heap-based buffer overflow in ldns

Source: MLIST
Type: UNKNOWN
[oss-security] 20110930 Re: CVE request: heap-based buffer overflow in ldns

Source: CCN
Type: SA46153
ldns Unknown RR Type Handling Buffer Overflow Vulnerability

Source: SECUNIA
Type: Vendor Advisory
46470

Source: SECUNIA
Type: Vendor Advisory
46476

Source: DEBIAN
Type: DSA-2353
ldns -- buffer overflow

Source: CCN
Type: NLnet Labs Bugzilla Bug 403
heap overflow in ldns_rr_new_frm_str_internal

Source: CONFIRM
Type: UNKNOWN
http://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=403

Source: CCN
Type: OSVDB ID: 76795
ldns rr.c ldns_rr_new_frm_str_internal() Function DNS Resource Record Parsing Remote Overflow

Source: BID
Type: UNKNOWN
49748

Source: CCN
Type: BID-49748
ldns 'rr.c' Remote Heap Buffer Overflow Vulnerability

Source: XF
Type: UNKNOWN
ldns-dns-bo(70022)

Vulnerable Configuration:

Configuration 1:

cpe:/a:nlnetlabs:ldns:0.50:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:0.60:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:0.65:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:0.66:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:0.70:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.0.0:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.1.0:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.2.0:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.2.2:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.3:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.4.0:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.4.1:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.5.0:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.0:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.1:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.2:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.3:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.4:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.5:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.6:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.7:*:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.8:-:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:1.6.9:-:*:*:*:*:*:*

OR cpe:/a:nlnetlabs:ldns:*:*:*:*:*:*:*:* (Version <= 1.6.10)

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20113581	V	CVE-2011-3581	2022-06-30
oval:org.opensuse.security:def:106	P	libXfont-devel-1.5.4-1.17 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:389	P	xinetd-2.3.15.4-bp154.1.21 on GA media (Moderate)	2022-06-10
oval:org.opensuse.security:def:1359	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP3) (Important)	2022-05-23
oval:org.opensuse.security:def:862	P	Security update for mutt (Moderate)	2022-04-25
oval:org.opensuse.security:def:1314	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2022-04-15
oval:org.opensuse.security:def:907	P	Security update for polkit (Important)	2022-01-25
oval:org.opensuse.security:def:112538	P	ldns-1.6.17-5.7 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:1782	P	Security update for ffmpeg (Moderate)	2021-10-06
oval:org.opensuse.security:def:106027	P	ldns-1.6.17-5.7 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:89633	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71219	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71238	P	libXrender-devel-0.9.10-1.30 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61478	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71351	P	openslp-2.0.0-6.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96598	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:103288	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:64564	P	Security update for openssl-1_1 (Important)	2021-08-24
oval:org.opensuse.security:def:47046	P	liblzo2-2-2.08-1.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48036	P	guestfs-data-1.32.4-21.3.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47384	P	libnm-glib-vpn1-1.0.12-12.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48129	P	libjansson4-2.12-3.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47180	P	xdg-utils-20140630-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47239	P	dbus-1-glib-0.100.2-3.58 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48067	P	libQt5Concurrent5-5.6.2-6.15.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47398	P	libproxy1-0.4.13-16.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47428	P	libvmtools0-10.1.5-2.17 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48343	P	xf86-video-intel-2.99.917+git781.c8990575-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47328	P	libXxf86vm1-1.1.3-3.53 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47371	P	libltdl7-2.4.2-16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48138	P	libkpathsea6-6.2.0dev-22.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47519	P	unrar-5.0.14-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47429	P	libvncclient0-0.9.9-16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47542	P	zoo-2.10-1020.56 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47463	P	perl-32bit-5.18.2-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47712	P	libgoa-1_0-0-3.20.5-9.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47443	P	mailx-12.5-28.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47626	P	gnome-shell-search-provider-nautilus-3.20.3-23.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47611	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47844	P	pam_yubico-2.26-1.25 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47564	P	axis-1.4-290.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47688	P	libXvnc1-1.6.0-18.23.72 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46910	P	cpio-2.11-29.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47825	P	mailx-12.5-28.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47936	P	zypper-1.13.45-21.23.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47757	P	libopus0-1.1-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47753	P	libopenssl-1_0_0-devel-1.0.2p-2.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46911	P	cpp48-4.8.5-30.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47909	P	unixODBC-2.3.6-7.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48084	P	libXrender1-0.9.8-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47889	P	spice-vdagent-0.16.0-8.5.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46956	P	gnutls-3.2.15-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47784	P	libsnmp30-32bit-5.7.3-6.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46925	P	dhcp-4.3.3-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47971	P	cifs-utils-6.9-9.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47383	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48298	P	rsyslog-8.24.0-3.28.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47981	P	ctags-5.8-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47088	P	libudisks2-0-2.1.3-1.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47855	P	perl-YAML-LibYAML-0.38-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:67998	P	Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:48382	P	chrony-2.3-3.110 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48547	P	libsmi-0.4.8-18.55 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70876	P	ceph-common-13.0.2.1874+ge31585919b-1.19 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61195	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48444	P	hplip-3.14.6-3.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48493	P	libfreetype6-2.6.3-7.8.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48509	P	libjavascriptcoregtk-3_0-0-2.4.11-23.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48427	P	git-core-1.8.5.6-18.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48830	P	empathy-3.12.12-7.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46627	P	cifs-utils-6.4-6.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48540	P	libproxy1-0.4.13-16.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48489	P	libecpg6-9.4.9-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46628	P	clamav-0.98.7-13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70989	P	libldb-devel-1.2.3-1.19 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48776	P	gnome-shell-calendar-3.20.4-70.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48611	P	qemu-2.6.1-27.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:72590	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48554	P	libssh2-1-1.4.3-19.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46642	P	dbus-1-1.8.16-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62871	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48585	P	openvswitch-2.5.1-24.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46763	P	libpython2_7-1_0-2.7.9-20.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48656	P	xscreensaver-5.22-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70936	P	ldns-devel-1.7.0-2.22 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:67536	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:64651	P	Security update for webkit2gtk3 (Important)	2021-02-22
oval:org.opensuse.security:def:103651	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:89996	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1828	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72636	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62917	P	perl-DNS-LDNS-1.7.0-2.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49746	P	mercurial on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64289	P	ldns-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67898	P	libass-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64202	P	ruby2.5-rubygem-rails-html-sanitizer on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49755	P	perl-DNS-LDNS on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67636	P	ldns-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49701	P	libvdpau-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49800	P	perl-DNS-LDNS on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:15047	P	DSA-2353-1 ldns -- buffer overflow	2014-06-23
oval:com.ubuntu.precise:def:20113581000	V	CVE-2011-3581 on Ubuntu 12.04 LTS (precise) - medium.	2011-11-04
oval:com.ubuntu.trusty:def:20113581000	V	CVE-2011-3581 on Ubuntu 14.04 LTS (trusty) - medium.	2011-11-04

BACK