CVE-2024-25629

low-risk
Published 2024-02-23

c-ares is a C library for asynchronous DNS requests. `ares__read_line()` is used to parse local configuration files such as `/etc/resolv.conf`, `/etc/nsswitch.conf`, the `HOSTALIASES` file, and if using a c-ares version prior to 1.27.0, the `/etc/hosts` file. If any of these configuration files has an embedded `NULL` character as the first character in a new line, it can lead to attempting to read memory prior to the start of the given buffer which may result in a crash. This issue is fixed in c-ares 1.27.0. No known workarounds exist.

Do I need to act?

-
0.06% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.4/10 Medium
LOCAL / LOW complexity

Affected Products (4)

C-Ares

Affected Vendors

Fedoraproject C-Ares

References (10)

Patch https://github.com/c-ares/c-ares/commit/a804c04ddc8245fc8adf0e92368709639125e183
Vendor Advisory https://github.com/c-ares/c-ares/security/advisories/GHSA-mg26-v6qh-x48q
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
Patch https://github.com/c-ares/c-ares/commit/a804c04ddc8245fc8adf0e92368709639125e183
Vendor Advisory https://github.com/c-ares/c-ares/security/advisories/GHSA-mg26-v6qh-x48q
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
Mailing List https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproje...
25
/ 100
low-risk
Severity 15/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 10/34 · Low