CVE-2023-50387

by Fred · 14/02/2024

Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, aka the "KeyTrap" issue. One of the concerns is that, when there is a zone with many DNSKEY and RRSIG records, the protocol specification implies that an algorithm must evaluate all combinations of DNSKEY and RRSIG records.

Date published : 2024-02-14

https://security.netapp.com/advisory/ntap-20240307-0007/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/

CVE-2023-50387

Similar

Recent Posts

Categories

CVE-2023-50387

Share this:

Similar

Recent Posts

Categories

Tags