Описание
The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matches an ID value in a query.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| python-dnslib | fixed | 0.9.18-1 | package | |
| python-dnslib | fixed | 0.9.14-1+deb11u1 | bullseye | package |
| python-dnslib | no-dsa | buster | package |
Примечания
https://github.com/paulc/dnslib/issues/30
https://github.com/paulc/dnslib/commit/76e8677699ed098387d502c57980f58da642aeba
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 4 лет назад
The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matches an ID value in a query.
CVSS3: 7.5
nvd
около 4 лет назад
The dnslib package through 0.9.16 for Python does not verify that the ID value in a DNS reply matches an ID value in a query.
