When ldns version 1.7.1 verifies a zone file, the ldns_rr_new_frm_str_internal function has a heap out of bounds read vulnerability. An attacker can leak information on the heap by constructing a zone file payload.
Ubuntu Security Notice 5257-1 - It was discovered that ldns incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information.