Thanks for the upload. I didn't give it a very high priority as there was
an easy fix using ACLs and I had a rough plan to fix it during next week.
Cheers, Ondřej
On 14 July 2017 22:12:11 Yves-Alexis Perez wrote:
On Fri, 2017-06-23 at 19:01 +0200, Salvatore Bonaccorso wrote:
Source: knot
V
On Fri, 2017-06-23 at 19:01 +0200, Salvatore Bonaccorso wrote:
> Source: knot
> Version: 2.4.3-1
> Severity: grave
> Tags: security upstream patch
> Control: found -1 2.5.1-1
>
> Hi
>
> See
> https://lists.nic.cz/pipermail/knot-dns-users/2017-June/001144.html
> and
> http://www.synacktiv.ninja/re
Control: retitle -1 knot: CVE-2017-11104: Improper TSIG validity period check
can allow TSIG forgery
On Fri, Jun 23, 2017 at 07:01:49PM +0200, Salvatore Bonaccorso wrote:
> Source: knot
> Version: 2.4.3-1
> Severity: grave
> Tags: security upstream patch
> Control: found -1 2.5.1-1
>
> Hi
>
> S
Source: knot
Version: 2.4.3-1
Severity: grave
Tags: security upstream patch
Control: found -1 2.5.1-1
Hi
See
https://lists.nic.cz/pipermail/knot-dns-users/2017-June/001144.html
and
http://www.synacktiv.ninja/ressources/Knot_DNS_TSIG_Signature_Forgery.pdf
and filling a bug in BTS to have a referen
4 matches
Mail list logo