Описание
A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the upstream DNS resolver) to manipulate records.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | released | 255.2-3ubuntu1 |
| esm-infra-legacy/trusty | needs-triage | |
| esm-infra/bionic | needs-triage | |
| esm-infra/focal | needed | |
| esm-infra/xenial | needs-triage | |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| lunar | ignored | end of life, was needed |
| mantic | ignored | end of life, was needed |
Показывать по
Ссылки на источники
EPSS
5.9 Medium
CVSS3
Связанные уязвимости
A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the upstream DNS resolver) to manipulate records.
A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the upstream DNS resolver) to manipulate records.
A vulnerability was found in systemd-resolved. This issue may allow sy ...
EPSS
5.9 Medium
CVSS3