oss-sec mailing list archives
Re: Re: CVE-request: systemd-resolved DNS cache poisoning
From: Jeremy Stanley <fungi () yuggoth org>
Date: Thu, 13 Nov 2014 21:02:40 +0000
On 2014-11-13 08:03:36 -1000 (-1000), Daniel Kahn Gillmor wrote: [...]
the problem with systemd-resolved as i understand it not that it's accepting packets from DNS servers it didn't request from, but that it's caching unrelated responses in those records.
[...] This sounds at least superficially similar to BIND CVE-2009-4022. -- Jeremy Stanley
Current thread:
- CVE-request: systemd-resolved DNS cache poisoning Sebastian Krahmer (Nov 12)
- Re: CVE-request: systemd-resolved DNS cache poisoning Florian Weimer (Nov 12)
- Re: CVE-request: systemd-resolved DNS cache poisoning Sebastian Krahmer (Nov 12)
- Re: CVE-request: systemd-resolved DNS cache poisoning cve-assign (Nov 12)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Florian Weimer (Nov 13)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Daniel Kahn Gillmor (Nov 13)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Jeremy Stanley (Nov 13)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Sebastian Krahmer (Nov 14)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Greg KH (Nov 14)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Florian Weimer (Nov 17)
- Re: Re: CVE-request: systemd-resolved DNS cache poisoning Florian Weimer (Nov 13)
- Re: CVE-request: systemd-resolved DNS cache poisoning Florian Weimer (Nov 12)