Description: | Buffer overflows in the DNS stub resolver library in ISC BIND 4.9.2
through 4.9.10, and other derived libraries such as BSD libc and GNU
glibc, allow remote attackers to execute arbitrary code via DNS server
responses that trigger the overflow in the (1) getnetbyname, or (2)
getnetbyaddr functions, aka "LIBRESOLV: buffer overrun" and a
different vulnerability than CVE-2002-0684.
|