cpe:/a:uclibc-ng_project:uclibc-ng:1.0.11 CVE-2016-2224 2017-03-24T11:59:00.513-04:00 2017-03-27T14:29:11.150-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2017-03-27T13:47:24.057-04:00 BID 82903 MLIST [oss-security] 20160205 CVE Request uclibc-ng dns resolver issues MLIST [oss-security] 20160205 Re: CVE Request uclibc-ng dns resolver issues CONFIRM http://repo.or.cz/uclibc-ng.git/commit/d9c3a16dcab57d6b56225b9a67e9119cc9e2e4ac CONFIRM https://security-tracker.debian.org/tracker/CVE-2016-2224 The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.