Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5633-1] knot-resolver security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5633-1] knot-resolver security update


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5633-1] knot-resolver security update
  • Date: Tue, 27 Feb 2024 21:35:50 +0000
  • List-archive: https://lists.debian.org/msgid-search/Zd5VtpAEdYCpGHJ0 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=vjZVlDQVmS1aNar2q+rs/tS6bZ+mbqOpLzsAx1GbV8s=; b=WE Hx8aFnqVjqdlPSnwRHrEL/wZMr+5OYOAEg7iJXEQxnIealsgUxIX0TMtEVi6Ew7xVzWl/GAoXetZ6 O7KOfyCIw/LBuJoMbydV1ZVvNp1YRBZuMo7IHYMHcylB6korzLxilQCFwhjeSDLNHrvdYlPzH7qVB LDCdvVP/oj4+aFxSw7lVlvtqPgOlWO8KpTQDUwWipJNH1iM80t/CyRWKLpb62lqhWm5slAnbE2pJV 8I5GNbZRhtgH8OEsPTHMi/iQhdXuxqdvkKNe2UvkhzMS418Xs/vGYHkZ95VymixGy+Z926aGfcjFq D98Xbq+h/2xPkrk7QRIVDA1ad/54VHEw==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Tue, 27 Feb 2024 21:36:15 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <UVlTvWuOUI.A.Ve.PXl3lB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5633-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
February 27, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : knot-resolver
CVE ID : CVE-2023-46317 CVE-2023-50387 CVE-2023-50868

It was discovered that malformed DNSSEC records within a DNS zone could
result in denial of service against Knot Resolver, a caching, DNSSEC-
validating DNS resolver.

For the stable distribution (bookworm), these problems have been fixed in
version 5.6.0-1+deb12u1.

We recommend that you upgrade your knot-resolver packages.

For the detailed security status of knot-resolver please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/knot-resolver

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=QRSI
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5633-1] knot-resolver security update, Moritz Muehlenhoff, 27.02.2024

Archiv bereitgestellt durch MHonArc 2.6.19+.

Seitenanfang