knot-resolver is vulnerable to Denial Of Service (DoS). The vulnerability exists because the single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response, allowing an attacker to crash the application
CPE | Name | Operator | Version |
---|---|---|---|
knot-resolver:sid | eq | 5.1.3-1 | |
knot-resolver:sid | eq | 5.4.1-2 | |
knot-resolver:sid | eq | 5.1.3-1 | |
knot-resolver:sid | eq | 5.4.1-2 |