c-ares vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the c-ares package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Use of Insufficiently Random Values	<0:1.19.1-1.amzn2.0.1
M Buffer Under-read	<0:1.10.0-3.amzn2.0.6
L Use of Insufficiently Random Values	<0:1.10.0-3.amzn2.0.5
M Out-of-bounds Write	<0:1.10.0-3.amzn2.0.4
M Cross-site Scripting (XSS)	<0:1.10.0-3.amzn2.0.4
M Improper Input Validation	<0:1.10.0-3.amzn2.0.4
H Resource Exhaustion	<0:1.10.0-3.amzn2.0.3