GHSA-p55x-7x9v-q8m4

Source

https://github.com/advisories/GHSA-p55x-7x9v-q8m4

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/06/GHSA-p55x-7x9v-q8m4/GHSA-p55x-7x9v-q8m4.json

Aliases

CVE-2017-15133
GO-2020-0006

Published

2021-06-29T21:45:07Z

Modified

2023-11-08T03:58:56.652522Z

Details

A denial of service flaw was found in miekg-dns before 1.0.4. A remote attacker could use carefully timed TCP packets to block the DNS server from accepting new connections.

References

https://nvd.nist.gov/vuln/detail/CVE-2017-15133
https://github.com/miekg/dns/issues/627
https://github.com/miekg/dns/pull/631
https://github.com/miekg/dns/commit/43913f2f4fbd7dcff930b8a809e709591e4dd79e
https://bugzilla.redhat.com/show_bug.cgi?id=1538763
https://pkg.go.dev/vuln/GO-2020-0006

Affected packages

Go / github.com/miekg/dns

Package

Name: github.com/miekg/dns

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.0.4