CVE-2026-40719 PUBLISHED

Deadwood in MaraDNS 3.5.0036 allows attackers to exhaust connection slots via a zone whose authoritative nameserver address cannot be resolved.

• https://github.com/samboy/MaraDNS/security/advisories/GHSA-cfc6-vhrv-62cj
• https://maradns.samiam.org/changelog.html

• CWE-670 Always-Incorrect Control Flow Implementation CWE