Описание
Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| knot-resolver | fixed | 5.6.0-1 | package | |
| knot-resolver | no-dsa | bullseye | package | |
| knot-resolver | no-dsa | buster | package |
Примечания
https://www.knot-resolver.cz/2023-01-26-knot-resolver-5.6.0.html
https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests/1380 (v5.6.0)
EPSS
Связанные уязвимости
Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.
Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.
Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.
EPSS