CVE-2007-1030Infinite Loop in Provos Libevent

5 documents5 sources
Severity
7.8HIGHNVD
EPSS
1.6%
top 18.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Niels Provos LibeventDebian Libevent
Timeline
PublishedFeb 21
Latest updateMay 1

Description

Niels Provos libevent 1.2 and 1.2a allows remote attackers to cause a denial of service (infinite loop) via a DNS response containing a label pointer that references its own offset.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

NVDniels_provos/libevent1.2, 1.2a+1

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

1
GHSA
GHSA-6chr-p56h-6wj6: Niels Provos libevent 12022-05-01

📋Vendor Advisories

2
Debian
CVE-2007-1030: libevent - Niels Provos libevent 1.2 and 1.2a allows remote attackers to cause a denial of ...2007
Red Hat
CVE-2007-1030: libevent < 1.3 DoS

💬Community

1
Bugzilla
CVE-2007-1030: libevent < 1.3 DoS2007-02-25