2 matches found
OESA-2021-1099 c-ares security update
This is c-ares, an asynchronous resolver library. It is intended for applications which need to perform DNS queries without blocking, or need to perform multiple. Security Fixes: A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Deni...
PT-2019-15812 · Cz.Nic +2 · Knot Resolver +2
Name of the Vulnerable Software and Affected Versions: knot-resolver versions prior to 4.3.0 Description: The issue allows for denial of service through high CPU utilization. This occurs when DNS replies contain a large number of resource records, which can be processed inefficiently. In extreme...