Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 644712 (CVE-2018-1000002)

Summary: <net-dns/knot-1.5.3: Insufficient DNSSEC validation (CVE-2018-1000002)
Product: Gentoo Security Reporter: Thomas Deutschmann (RETIRED) <whissi>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: minor CC: nemunaire, proxy-maint
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B4 [noglsa cve]
Package list:
Runtime testing required: ---

Description Thomas Deutschmann (RETIRED) gentoo-dev 2018-01-15 22:21:07 UTC
Incoming details.
Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev 2018-01-22 15:16:03 UTC
An issue has been found in the net-dns/knot, allowing attackers to deny existence of some data by forging packets. Some combinations pointed out in RFC 6840 sections 4.1 and 4.3 were not taken into account.
Comment 2 Aaron Bauman (RETIRED) gentoo-dev 2018-12-02 23:50:47 UTC
tree is clean