Latest vulnerabilities for "c-ares"

Where

Sort:

c-ares c-aresUse After Free

Risk 19

Severity

First published (updated )

REDHAT-BUG-2358271

CVE-2025-31498: c-as use-after-fe

First published (updated )

https://seclists.org/oss-sec/2025/q2/27

ubuntu/c-aresc-ares out of bounds read in ares__read_line()

Risk 25

Severity

5.5

EPSS

0.04%

First published (updated )

CVE-2024-25629

c-ares c-aresCVE-2023-32067. 0-byte UDP payload causes Denial of Service (https://github.com/c-ares/c-ares/secur…

Risk 33

Severity

First published (updated )

REDHAT-BUG-2209502

c-ares c-aresDescription of issue(s): When /dev/urandom or RtlGenRandom() are unavailable, c-ares uses rand() to …

Risk 19

Severity

First published (updated )

REDHAT-BUG-2209501

c-ares c-aresares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "…

Risk 19

Severity

First published (updated )

REDHAT-BUG-2209497

Fedoraproject FedoraAutoTools does not set CARES_RANDOM_FILE during cross compilation

Risk 40

Severity

6.5

First published (updated )

CVE-2023-31124

c-ares c-aresWhen cross-compiling c-ares and using the autotools build system, CARES_RANDOM_FILE will not be set,…

Risk 5

Severity

First published (updated )

REDHAT-BUG-2209494

Nodejs Node.jsXSS, Input Validation

Risk 49

Severity

6.8

First published (updated )

CVE-2021-3672

IBM Cloud Pak for Security (CP4S)Buffer Overflow

Risk 45

Severity

7.5

First published (updated )

CVE-2020-8277

redhat/c-aresUse After Free, Double Free

Risk 18

Severity

3.3

First published (updated )

CVE-2020-14354

Nodejs Node.jsInfoleak

Risk 43

Severity

7.5

First published (updated )

CVE-2017-1000381

c-ares c-aresBuffer Overflow

Risk 88

Severity

9.8

First published (updated )

CVE-2016-5180

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Versions

c-ares c-aresUse After Free

CVE-2025-31498: c-as use-after-fe

ubuntu/c-aresc-ares out of bounds read in ares__read_line()

c-ares c-aresCVE-2023-32067. 0-byte UDP payload causes Denial of Service (https://github.com/c-ares/c-ares/secur…

c-ares c-aresDescription of issue(s): When /dev/urandom or RtlGenRandom() are unavailable, c-ares uses rand() to …

Don't miss critical vulnerabilities

c-ares c-aresares_inet_net_pton() is vulnerable to a buffer underflow for certain ipv6 addresses, in particular "…

Fedoraproject FedoraAutoTools does not set CARES_RANDOM_FILE during cross compilation

c-ares c-aresWhen cross-compiling c-ares and using the autotools build system, CARES_RANDOM_FILE will not be set,…

Nodejs Node.jsXSS, Input Validation

IBM Cloud Pak for Security (CP4S)Buffer Overflow

Don't miss critical vulnerabilities

redhat/c-aresUse After Free, Double Free

Nodejs Node.jsInfoleak

c-ares c-aresBuffer Overflow

Company

Resources

Contact