2 matches found
SUSE CVE-2023-29483
eventlet before 0.35.2, as used in dnspython before 2.6.0, allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, aka a "TuDoor" attack. In other words, dnspython does not have the preferred behavior in whic...
PT-2024-12218
Name of the Vulnerable Software and Affected Versions dnspython versions prior to 2.6.1 eventlet versions prior to 0.35.2 Description The issue allows remote attackers to interfere with DNS name resolution by quickly sending an invalid packet from the expected IP address and source port, also kno...