Back to search
CVE-2015-5695
Published: Aug 31, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
Designate 2015.1.0 through 1.0.0.0b1 as packaged in OpenStack Kilo does not enforce RecordSets per domain, and Records per RecordSet quotas when processing an internal zone file transfer, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted resource record set.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1245241
x_refsource_CONFIRM
https://launchpadlibrarian.net/211525251/bug-1471161-quotas-master.patch
x_refsource_CONFIRM
https://bugs.launchpad.net/designate/+bug/1471161
x_refsource_CONFIRM
[Openstack] 20150728 [Security][LP# 1471161] Designate mDNS DoS through incorrect handling of large RecordSets
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now