CVE-2017-15107

Published: Jan 23, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames that actually exist.

Vendor	Product	Versions
Simon Kelley	dnsmasq	affected `up to and including 2.78`

Weaknesses (CWE)

CWE-358

References

[dnsmasq-discuss] 20180119 DNSSEC security fix.

mailing-list

x_refsource_MLIST

102812

vdb-entry

x_refsource_BID

openSUSE-SU-2019:2669

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-15107

Description

Affected Products

Weaknesses (CWE)

References