Denial of Service Vulnerability in uClibc-ng's __read_etc_hosts_r Function

Denial of Service Vulnerability in uClibc-ng's __read_etc_hosts_r Function

CVE-2016-2225 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.

Learn more about our Cis Benchmark Audit For Server Software.