Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <6bcee2fd-c3aa-409c-8ee8-7e1af8295881@gmail.com>
Date: Mon, 8 Dec 2025 12:23:37 -0500
From: Demi Marie Obenour <demiobenour@...il.com>
To: oss-security@...ts.openwall.com, Brad House <brad@...d-house.com>
Subject: Re: CVE-2025-62408: c-ares 1.32.3-1.34.5 use after
 free()

On 12/8/25 11:42, Brad House wrote:
> Moderate.
> 
> Use after free() in read_answer() when process_answer() may terminate a 
> query such as after maximum attempts. This was causing the connection to 
> be closed, but still possibly additional answers to be processed. This 
> is a missed case from CVE-2025-31498.
> 
> Use after free will lead to crash / Denial of Service.
> 
> Patch: 
> https://github.com/c-ares/c-ares/commit/714bf5675c541bd1e668a8db8e67ce012651e618.patch
> 
> Links: 
> https://github.com/c-ares/c-ares/security/advisories/GHSA-jq53-42q6-pqr5

Use-after-free can also lead to information leaks or code execution.
-- 
Sincerely,
Demi Marie Obenour (she/her/hers)
Download attachment "OpenPGP_0xB288B55FFF9C22C1.asc" of type "application/pgp-keys" (7141 bytes)

Download attachment "OpenPGP_signature.asc" of type "application/pgp-signature" (834 bytes)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.