Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 644712 (CVE-2018-1000002) - <net-dns/knot-1.5.3: Insufficient DNSSEC validation (CVE-2018-1000002)
Summary: <net-dns/knot-1.5.3: Insufficient DNSSEC validation (CVE-2018-1000002)
Status: RESOLVED FIXED
Alias: CVE-2018-1000002
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://www.knot-resolver.cz/2018-01-...
Whiteboard: B4 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2018-01-15 22:21 UTC by Thomas Deutschmann
Modified: 2018-12-02 23:51 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Thomas Deutschmann gentoo-dev Security 2018-01-15 22:21:07 UTC
Incoming details.
Comment 1 Thomas Deutschmann gentoo-dev Security 2018-01-22 15:16:03 UTC
An issue has been found in the net-dns/knot, allowing attackers to deny existence of some data by forging packets. Some combinations pointed out in RFC 6840 sections 4.1 and 4.3 were not taken into account.
Comment 2 Aaron Bauman Gentoo Infrastructure gentoo-dev Security 2018-12-02 23:50:47 UTC
tree is clean