[SECURITY] Fedora 31 Update: knot-resolver-4.3.0-1.fc31

The Knot Resolver is a DNSSEC-enabled caching full resolver implementation written in C and LuaJIT, including both a resolver library and a daemon. Modular architecture of the library keeps the core tiny and efficient, and provides a state-machine like API for extensions. The package is...

Fedora 30 : knot-resolver (2019-44ccfa9b29)

update to upstream version 4.3.0 - fixes CVE-2019-19331 - root.keys is moved to /var/lib/knot-resolver - knot-resolver no longer requires write permission to /etc/knot-resolver/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

Fedora 31 : knot-resolver (2019-866dc03603)

update to upstream version 4.3.0 - fixes CVE-2019-19331 - root.keys is moved to /var/lib/knot-resolver - knot-resolver no longer requires write permission to /etc/knot-resolver/ Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

EulerOS 2.0 SP2 : NetworkManager (EulerOS-SA-2019-2371)

According to the version of the NetworkManager packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in...

CZ.NIC Knot Resolver CVE-2019-19331 Denial of Service Vulnerability

Description CZ.NIC Knot Resolver is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause denial-of-service condition. Knot Resolver versions prior to 4.3.0 are vulnerable. Technologies Affected CZ.NIC labs Knot Resolver 2.0.0 CZ.NIC labs Knot Resolver 2.1.0...

SUSE-SU-2019:3097-1 Security update for cloud-init

This update for cloud-init to version 19.2 fixes the following issues: Security issue fixed: - CVE-2019-0816: Fixed the unnecessary extra ssh keys that were added to authorizedkeys bsc1129124. Non-security issues fixed: - Short circuit the conditional for identifying the sysconfig renderer...

Unbound DNS Resolver 1.6.4 - 1.9.4 RCE Vulnerability

Unbound DNS Resolver is prone to a remote code execution RCE vulnerability under certain conditions. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Updated systemd packages fix security vulnerability

Updated systemd packages fix security vulnerability: Nadav Markus from Palo Alto Networks discovered that systemd-resolved does not enforce appropriate access controls on its D-Bus interface and allows unprivileged users to execute methods that are meant to be available only to privileged users...

MGASA-2019-0330 Updated systemd packages fix security vulnerability

Updated systemd packages fix security vulnerability: Nadav Markus from Palo Alto Networks discovered that systemd-resolved does not enforce appropriate access controls on its D-Bus interface and allows unprivileged users to execute methods that are meant to be available only to privileged users...

CVE-2019-2205

In ProxyResolverV8::SetPacScript of proxyresolverv8.cc, there is a possible memory corruption due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...

EulerOS 2.0 SP8 : systemd (EulerOS-SA-2019-2121)

According to the version of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In systemd 240, busopensystemwatchbindwithdescription in shared/bus-util.c as used by systemd-resolved to connect to the system D-Bus instance,...

[SECURITY] Fedora 31 Update: unbound-1.9.4-1.fc31

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

Fedora Update for unbound FEDORA-2019-e99b716a92

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: unbound-1.9.4-1.fc30

Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...

Unbound DNS Resolver < 1.9.4 DoS Vulnerability

Unbound DNS Resolver is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

All Resolvers Aren't Equal - Don't Worry, GTM is Aware

What is GTM Global Traffic Management, or GTM, is a DNS-based load balancing service that offers application owners a level of flexibility and insight that is unmatched by traditional on-prem solutions. Highly scalable and fault-resilient, GTM offers customers a layer of abstraction between...

Debian DSA-4544-1 : unbound - security update

X41 D-Sec discovered that unbound, a validating, recursive, and caching DNS resolver, did not correctly process some NOTIFY queries. This could lead to remote denial-of-service by application crash. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

[SECURITY] [DSA 4544-1] unbound security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4544-1 [email protected] https://www.debian.org/security/ Sebastien Delafond October 16, 2019 https://www.debian.org/security/faq -...

CVE-2018-5745

"managed-keys" is a feature which allows a BIND resolver to automatically maintain the keys used by trust anchors which operators configure for use in DNSSEC validation. Due to an error in the managed-keys feature it is possible for a BIND server which uses managed-keys to exit due to an assertio...

USN-4149-1: Unbound vulnerability

It was discovered that Unbound incorrectly handled certain NOTIFY queries. An attacker could possibly use this issue to cause a denial of service...