CVE-2016-6171

Опубликовано: 09 фев. 2017

Источник: debian

Описание

Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
knot	fixed	2.3.0-1		package
knot	no-dsa		jessie	package

Примечания

https://gitlab.labs.nic.cz/labs/knot/merge_requests/541
https://gitlab.labs.nic.cz/labs/knot/issues/464

Связанные уязвимости

CVE-2016-6171

CVSS3: 8.6

ubuntu

почти 9 лет назад

Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.

CVE-2016-6171

CVSS3: 8.6

nvd

почти 9 лет назад

Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.

GHSA-935v-fg4c-f9fr

CVSS3: 8.6

github

больше 3 лет назад

Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.