When ldns version 1.7.1 verifies a zone file, the ldnsrrnewfrmstr_internal function has a heap out of bounds read vulnerability. An attacker can leak information on the heap by constructing a zone file payload.
{ "vanir_signatures": [ { "deprecated": false, "id": "CVE-2020-19860-191561e2", "signature_version": "v1", "digest": { "length": 8891.0, "function_hash": "251941352422954362548173721366397297493" }, "signature_type": "Function", "target": { "function": "ldns_rr_new_frm_str_internal", "file": "rr.c" }, "source": "https://github.com/nlnetlabs/ldns/commit/15d96206996bea969fbc918eb0a4a346f514b9f3" }, { "deprecated": false, "id": "CVE-2020-19860-75361339", "signature_version": "v1", "digest": { "line_hashes": [ "304150356136728191013666289071051846294", "155677165420181730933934979959893485858", "77135638458978608597762295275407082624", "260965272174818498082687692350980513016", "130518172275200410960406267494341286040", "51273490682426193892898198661893070480", "21702059573567139622621572651513730590", "210984438082497427222760441458755393575", "12078708481039353439108142430185836923", "275043312956904328881478936168966183832", "72408890483878620117238557110253677009" ], "threshold": 0.9 }, "signature_type": "Line", "target": { "file": "rr.c" }, "source": "https://github.com/nlnetlabs/ldns/commit/15d96206996bea969fbc918eb0a4a346f514b9f3" } ] }