Denial of Service Vulnerability in uClibc-ng's __decode_dotted Function

CVE-2016-2224 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.

Learn more about our Cis Benchmark Audit For Server Software.