CVE-2010-2444

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2010-2444

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2010-2444.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2010-2444

Downstream

DEBIAN-CVE-2010-2444

Published

2010-06-25T18:30:01Z

Modified

2026-04-10T03:41:18.797021Z

Summary

[none]

Details

parse/Csv2_parse.c in MaraDNS 1.3.03, and other versions before 1.4.03, does not properly handle hostnames that do not end in a "." (dot) character, which allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted csv2 zone file.

References

http://maradns.org/download/maradns-1.4.02-parse_segfault.patch
http://www.openwall.com/lists/oss-security/2010/06/09/4
http://www.openwall.com/lists/oss-security/2010/06/24/5

CVE-2010-2444

Affected packages