2962 matches found
UBUNTU-CVE-2018-1000135
GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN. This vulnerability appears to have been fixed in Some Ubuntu 16.04 packages were fixed,...
Information disclosure
GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN. This vulnerability appears to have been fixed in Some Ubuntu 16.04 packages were fixed,...
CVE-2018-1000135
GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN. This vulnerability appears to have been fixed in Some Ubuntu 16.04 packages were fixed,...
CVE-2018-1000135
GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN. This vulnerability appears to have been fixed in Some Ubuntu 16.04 packages were fixed,...
CVE-2018-1000135
CVE-2018-1000135 affects GNOME NetworkManager 1.10.2 and earlier, with an information-exposure flaw in the DNS resolver that can leak private DNS queries to local network DNS servers, including over VPN. The initial report notes an upstream fix did not appear to be publicly available and that Ubu...
CVE-2018-1000135
GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure CWE-200 vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN. This vulnerability appears to have been fixed in Some Ubuntu 16.04 packages were fixed,...
RHEL 7 : bind (RHSA-2018:0488)
"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0488 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named C Tenable...
bind: Improper fetch cleanup sequencing in the resolver can cause named to crash
A use-after-free flaw leading to denial of service was found in the way BIND internally handled cleanup operations on upstream recursion fetch contexts. A remote attacker could potentially use this flaw to make named, acting as a DNSSEC validating resolver, exit unexpectedly with an assertion...
Fedora Update for knot-resolver FEDORA-2018-fe5a6ed3b7
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for knot-resolver FEDORA-2018-844a1e9778
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : knot-resolver (2018-fe5a6ed3b7)
Knot Resolver 2.1.0 2018-02-16 ================================ Incompatible changes -------------------- - stats: remove tracking of expiring records predict uses another way - systemd: re-use a single kresd.socket and kresd-tls.socket - tasentinel: implement protocol...
Fedora 26 : knot-resolver (2018-844a1e9778)
Knot Resolver 2.1.0 2018-02-16 ================================ Incompatible changes -------------------- - stats: remove tracking of expiring records predict uses another way - systemd: re-use a single kresd.socket and kresd-tls.socket - tasentinel: implement protocol...
[SECURITY] Fedora 27 Update: knot-resolver-2.1.0-1.fc27
The Knot DNS Resolver is a caching full resolver implementation written in C and LuaJIT, including both a resolver library and a daemon. Modular architecture of the library keeps the core tiny and efficient, and provides a state-machine like API for extensions. The package is pre-configured as...
[SECURITY] Fedora 26 Update: knot-resolver-2.1.0-1.fc26
The Knot DNS Resolver is a caching full resolver implementation written in C and LuaJIT, including both a resolver library and a daemon. Modular architecture of the library keeps the core tiny and efficient, and provides a state-machine like API for extensions. The package is pre-configured as...
Amazon Linux AMI : bind (ALAS-2018-954)
Improper fetch cleanup sequencing in the resolver can cause named to crash : A use-after-free flaw leading to denial of service was found in the way BIND internally handled cleanup operations on upstream recursion fetch contexts. A remote attacker could potentially use this flaw to make named,...
[SECURITY] Fedora 26 Update: unbound-1.6.8-1.fc26
Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...
USN-3558-1 systemd vulnerabilities
Karim Hossen & Thomas Imbert and Nelson William Gamazo Sanchez independently discovered that systemd-resolved incorrectly handled certain DNS responses. A remote attacker could possibly use this issue to cause systemd to temporarily stop responding, resulting in a denial of service. This issue on...
[SECURITY] Fedora 27 Update: unbound-1.6.8-1.fc27
Unbound is a validating, recursive, and caching DNSSEC resolver. The C implementation of Unbound is developed and maintained by NLnet Labs. It is based on ideas and algorithms taken from a java prototype developed by Verisign labs, Nominet, Kirei and ep.net. Unbound is designed as a set of modula...
[SECURITY] Fedora 26 Update: bind-9.11.2-1.P1.fc26
BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...
Unbound < 1.6.4 parse_edns_options Heap Buffer Overflow
According to its self-reported version number, the remote Unbound DNS resolver is affected by a heap buffer overflow in parseednsoptions. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid106383; scriptversion"1.5"; scriptcvsdate"Date: 2018/11/15 20:50:21";...