Santiago R.R. pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
85315cd8 by Santiago Ruano Rincón at 2020-05-20T11:48:26+02:00
data/CVE/list: add commits that mitigate NXMSattack in knot-resolver
- - - - -
857f7232 by Santiago Ruano Rincón at 2020-05-20T11:48:32+02:00
Merge remote-tracking branch 'refs/remotes/origin/master'
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1225,6 +1225,8 @@ CVE-2020-12668
CVE-2020-12667 (Knot Resolver before 5.1.1 allows traffic amplification via a
crafted ...)
- knot-resolver <unfixed> (bug #961076)
NOTE:
https://en.blog.nic.cz/2020/05/19/nxnsattack-upgrade-resolvers-to-stop-new-kind-of-random-subdomain-attack/
+ NOTE: commit:
https://gitlab.labs.nic.cz/knot/knot-resolver/-/commit/54f05e4d7b2e47c0bdd30b84272fc503cc65304b
+ NOTE: commit:
https://gitlab.labs.nic.cz/knot/knot-resolver/-/commit/ba7b89db780fe3884b4e90090318e25ee5afb118
CVE-2020-12666 (macaron before 1.3.7 has an open redirect in the static
handler, as de ...)
NOT-FOR-US: macaron
CVE-2020-12665
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/88813d2681562ec8f31667490bbaef18eea186ac...857f72323a7e1c5a10d9063c5cbcbf18a97cf20b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/88813d2681562ec8f31667490bbaef18eea186ac...857f72323a7e1c5a10d9063c5cbcbf18a97cf20b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
