VDB
CVE-2017-9104
CVE-2017-9104
PUBLISHED
An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if a compression pointer loop is encountered.
EPSS 0.89% · 76.0th percentile
Risk Scores
EPSS Score
0.89%
76.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | adns | 1.5.0~rc1-1.1ubuntu1, 0, 1.5.0~rc1-1ubuntu1 |
| Ubuntu:16.04:LTS | adns | 0, 1.5.0~rc1-1ubuntu1 |
| Ubuntu:20.04:LTS | adns | 0, 1.5.1-0.1 |
Exploit Intelligence
- http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git (circl)
- openSUSE-SU-2020:0827 (circl)
- https://www.chiark.greenend.org.uk/pipermail/adns-announce/2020/000004.html (circl)
- http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git%3Ba=blob%3Bf=changelog (circl)
- FEDORA-2020-530188bf36 (circl)
- FEDORA-2020-e59bcaf702 (circl)
Timeline
- Jun 17, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 11, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2017-9104 third-party-advisory
- http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?p=adns.git;a=commit;h=7ba7a232de0516d2cce934bdc91627b33b46ef47 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2017-9104 third-party-advisory