Количество 37
Количество 37
BDU:2024-01359
Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании
ROS-20240611-07
Уязвимость dnsmasq
ROS-20240410-24
Множественные уязвимости pdns-recursor
ROS-20240410-09
Множественные уязвимости python3-unbound
ROS-20240611-09
Множественные уязвимости bind
CVE-2023-50387
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.
CVE-2023-50387
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.
CVE-2023-50387
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.
CVE-2023-50387
MITRE: CVE-2023-50387 DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers
CVE-2023-50387
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6 ...
GHSA-8459-gg55-8qjj
Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses when there is a zone with many DNSKEY and RRSIG records, aka the "KeyTrap" issue. The protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.
SUSE-SU-2025:0130-1
Security update for dnsmasq
RLSA-2024:1335
Important: dnsmasq security update
ELSA-2024-1335
ELSA-2024-1335: dnsmasq security update (IMPORTANT)
ELSA-2024-1334
ELSA-2024-1334: dnsmasq security update (IMPORTANT)
ELSA-2024-11003
ELSA-2024-11003: unbound security update (IMPORTANT)
ELSA-2024-0977
ELSA-2024-0977: unbound security update (IMPORTANT)
ELSA-2024-0965
ELSA-2024-0965: unbound security update (IMPORTANT)
openSUSE-SU-2024:0048-1
Security update for pdns-recursor
SUSE-SU-2025:0071-1
Security update for dnsmasq
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-01359 Уязвимость компонента DNSSEC реализации протокола DNS сервера DNS BIND, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 40% Средний | больше 1 года назад |
 | ROS-20240611-07 Уязвимость dnsmasq | CVSS3: 7.5 | 40% Средний | около 1 года назад |
| ROS-20240410-24 Множественные уязвимости pdns-recursor | CVSS3: 7.5 | около 1 года назад | |
| ROS-20240410-09 Множественные уязвимости python3-unbound | CVSS3: 7.5 | около 1 года назад | |
| ROS-20240611-09 Множественные уязвимости bind | CVSS3: 7.5 | около 1 года назад | |
 | CVE-2023-50387 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records. | CVSS3: 7.5 | 40% Средний | больше 1 года назад |
 | CVE-2023-50387 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records. | CVSS3: 7.5 | 40% Средний | больше 1 года назад |
 | CVE-2023-50387 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records. | CVSS3: 7.5 | 40% Средний | больше 1 года назад |
 | CVE-2023-50387 MITRE: CVE-2023-50387 DNSSEC verification complexity can be exploited to exhaust CPU resources and stall DNS resolvers | 40% Средний | больше 1 года назад | |
| CVE-2023-50387 Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6 ... | CVSS3: 7.5 | 40% Средний | больше 1 года назад |
| GHSA-8459-gg55-8qjj Certain DNSSEC aspects of the DNS protocol (in RFC 4035 and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses when there is a zone with many DNSKEY and RRSIG records, aka the "KeyTrap" issue. The protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records. | CVSS3: 7.5 | 40% Средний | больше 1 года назад |
 | SUSE-SU-2025:0130-1 Security update for dnsmasq | 5 месяцев назад | ||
 | RLSA-2024:1335 Important: dnsmasq security update | около 1 года назад | ||
| ELSA-2024-1335 ELSA-2024-1335: dnsmasq security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2024-1334 ELSA-2024-1334: dnsmasq security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2024-11003 ELSA-2024-11003: unbound security update (IMPORTANT) | 5 месяцев назад | ||
| ELSA-2024-0977 ELSA-2024-0977: unbound security update (IMPORTANT) | больше 1 года назад | ||
| ELSA-2024-0965 ELSA-2024-0965: unbound security update (IMPORTANT) | больше 1 года назад | ||
| openSUSE-SU-2024:0048-1 Security update for pdns-recursor | больше 1 года назад | ||
| SUSE-SU-2025:0071-1 Security update for dnsmasq | 5 месяцев назад |
Уязвимостей на страницу