31 matches found
Huawei EulerOS: Security Advisory for python-dns (EulerOS-SA-2025-1495)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-dns (EulerOS-SA-2025-1218)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-dns (EulerOS-SA-2025-1028)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : python-dns (EulerOS-SA-2025-1011)
According to the versions of the python-dns package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an...
Huawei EulerOS: Security Advisory for python-dns (EulerOS-SA-2024-2724)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for python-dns (EulerOS-SA-2024-2758)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP12 : python-dns (EulerOS-SA-2024-2538)
According to the versions of the python-dns package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an...
Huawei EulerOS: Security Advisory for python-dns (EulerOS-SA-2024-2513)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP11 : python-dns (EulerOS-SA-2024-2590)
According to the versions of the python-dns package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an...
EulerOS 2.0 SP11 : python-dns (EulerOS-SA-2024-2564)
According to the versions of the python-dns package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-dnspython (SUSE-SU-2024:2655-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2655-1 advisory. - CVE-2023-29483: Fixed an issue that allowed remote attackers to interfere with DNS name resolution...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-dnspython (SUSE-SU-2024:2626-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:2626-1 advisory. - CVE-2023-29483: Fixed an issue that allowed remote attackers to interfere with DNS name resolution...
SUSE-SU-2024:2655-1 Security update for python-dnspython
This update for python-dnspython fixes the following issues: - CVE-2023-29483: Fixed an issue that allowed remote attackers to interfere with DNS name resolution bsc1222693...
SUSE SLES12 Security Update : python-dnspython (SUSE-SU-2024:2605-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2605-1 advisory. - CVE-2023-29483: Fixed an issue that allowed remote attackers to interfere with DNS name resolution bsc1222693. Tenable has extracted the...
CentOS 8 : python-dns (CESA-2024:3275)
The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2024:3275 advisory. - eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet...
Fedora 38 : python-dns (2024-bbd76d7c63)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-bbd76d7c63 advisory. Fix for CVE-2023-29483 rhbz2274685 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Denial Of Service (DoS)
eventlet and dnspython are vulnerable to Denial Of Service DoS. The vulnerability is due to a lack of enforcing the preferred behavior of waiting for a valid packet during DNS name resolution, allowing remote attackers to interfere with the resolution process by quickly sending an invalid packet...
Potential DoS via the Tudoor mechanism in eventlet and dnspython
eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...
GHSA-3RQ5-2G8H-59HC Potential DoS via the Tudoor mechanism in eventlet and dnspython
eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...
CVE-2023-29483
eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...