CVE-2020-22217 — Vulnetix

Try Vulnetix Request Demo

CVE-2020-22217 PUBLISHED

Buffer overflow vulnerability in c-ares before 1_16_1 thru 1_17_0 via function ares_parse_soa_reply in ares_parse_soa_reply.c.

EPSS 0.12% · 30.1th percentile

Risk Scores

EPSS Score

0.12%

30.1th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:Pro:18.04:LTS	c-ares	0, 1.14.0-1ubuntu0.2+esm2, 1.14.0-1ubuntu0.2+esm1
Ubuntu:20.04:LTS	c-ares	1.15.0-1ubuntu0.3, 0, 1.15.0-1build1
Ubuntu:Pro:16.04:LTS	c-ares	1.10.0-3ubuntu0.1, 1.10.0-3, 1.10.0-2

Timeline

Aug 22, 2023 CVE Published
Aug 23, 2023 EPSS Score
Sep 25, 2023 EPSS Score
Oct 27, 2023 EPSS Score
Nov 29, 2023 EPSS Score
Dec 31, 2023 EPSS Score
Feb 2, 2024 EPSS Score
Mar 5, 2024 EPSS Score
Apr 7, 2024 EPSS Score
May 9, 2024 EPSS Score
Jun 11, 2024 EPSS Score
Jul 14, 2024 EPSS Score

References

https://ubuntu.com/security/CVE-2020-22217 third-party-advisory
https://ubuntu.com/security/notices/USN-6376-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2020-22217 third-party-advisory

Open in Interactive Console →