Memory leak in the __res_vinit function in the IPv6 name server management
code in libresolv in GNU C Library (aka glibc or libc6) before 2.24 allows
remote attackers to cause a denial of service (memory consumption) by
leveraging partial initialization of internal resolver data structures.
Tim Ruehsen discovered that the getaddrinfo() implementation in the GNU
C Library did not properly track memory allocations. An attacker could
use this to cause a denial of service.
sbeattie> introduced in 2.22 commit 2212c1420c92a33b0e0bd9a34938c9814a56c0f7
Updated: 2017-03-21 04:14:33 UTC (commit 12277)