ALT-PU-2023-2974-1
Package knot-resolver updated to version 5.6.0-alt1 for branch sisyphus_mipsel.
Closed vulnerabilities
Published: 2023-02-21
Modified: 2025-03-14
Modified: 2025-03-14
CVE-2023-26249
Knot Resolver before 5.6.0 enables attackers to consume its resources, launching amplification attacks and potentially causing a denial of service. Specifically, a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References: