2022-09-30
ALT-BU-2022-6324-1
Branch sisyphus update bulletin.
Package rpm-build-tex updated to version 0.4.4-alt1 for branch sisyphus in task 307592.
Closed bugs
tex.prov.files: неверно обрабатываются файлы, начинающиеся с '-'
Package knot-resolver updated to version 5.5.3-alt1 for branch sisyphus in task 307598.
Closed vulnerabilities
Published: 2022-06-20
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2022-32983
Knot Resolver through 5.5.1 may allow DNS cache poisoning when there is an attempt to limit forwarding actions by filters.
Severity: MEDIUM (5.3)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
References:
- https://github.com/CZ-NIC/knot-resolver/commit/ccb9d9794db5eb757c33becf65cb1cf48ecfd968
- https://github.com/CZ-NIC/knot-resolver/commit/ccb9d9794db5eb757c33becf65cb1cf48ecfd968
- https://knot-resolver.readthedocs.io/en/stable/modules-policy.html#forwarding
- https://knot-resolver.readthedocs.io/en/stable/modules-policy.html#forwarding
Published: 2022-09-23
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2022-40188
Knot Resolver before 5.5.3 allows remote attackers to cause a denial of service (CPU consumption) because of algorithmic complexity. During an attack, an authoritative server must return large NS sets or address sets.
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
- https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests/1343#note_262558
- https://gitlab.nic.cz/knot/knot-resolver/-/merge_requests/1343#note_262558
- [debian-lts-announce] 20221008 [SECURITY] [DLA 3139-1] knot-resolver security update
- [debian-lts-announce] 20221008 [SECURITY] [DLA 3139-1] knot-resolver security update
- FEDORA-2022-357cc1a81b
- FEDORA-2022-357cc1a81b
- FEDORA-2022-68ad89b21c
- FEDORA-2022-68ad89b21c
- FEDORA-2022-2a4ca7b18d
- FEDORA-2022-2a4ca7b18d