GO-2020-0006

Source

https://pkg.go.dev/vuln/GO-2020-0006

Import Source

https://vuln.go.dev/ID/GO-2020-0006.json

Aliases

CVE-2017-15133
GHSA-p55x-7x9v-q8m4

Published

2021-04-14T20:04:52Z

Modified

2023-12-14T15:51:14Z

Details

An attacker may prevent TCP connections to a Server by opening a connection and leaving it idle, until the connection is closed by the server no other connections will be accepted.

References

https://github.com/miekg/dns/pull/631
https://github.com/miekg/dns/commit/43913f2f4fbd7dcff930b8a809e709591e4dd79e

Affected packages

Go / github.com/miekg/dns

Package

Name: github.com/miekg/dns

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Fixed

1.0.4-0.20180125103619-43913f2f4fbd

Ecosystem specific

{
    "imports": [
        {
            "path": "github.com/miekg/dns",
            "symbols": [
                "ActivateAndServe",
                "ListenAndServe",
                "ListenAndServeTLS",
                "Server.ActivateAndServe",
                "Server.ListenAndServe",
                "Server.serveTCP"
            ]
        }
    ]
}