Vulnerabilities > Uclibc NG Project > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-24 | CVE-2016-2225 | Resource Exhaustion vulnerability in Uclibc-Ng Project Uclibc-Ng The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet. | 7.5 |
| 2017-03-24 | CVE-2016-2224 | Resource Exhaustion vulnerability in Uclibc-Ng Project Uclibc-Ng The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply. | 7.5 |
| 2017-01-27 | CVE-2016-6264 | Integer signedness error in libc/string/arm/memset.S in uClibc and uClibc-ng before 1.0.16 allows context-dependent attackers to cause a denial of service (crash) via a negative length value to the memset function. | 7.5 |