DNRD (aka Domain Name Relay Daemon) 2.20.3 forwards and caches DNS queries with the CD (aka checking disabled) bit set to 1. This leads to disabling of DNSSEC protection provided by upstream resolvers.
References
Link | Resource |
---|---|
http://dnrd.sourceforge.net/ | Product Third Party Advisory |
https://www.openwall.com/lists/oss-security/2022/08/14/1 | Mailing List Third Party Advisory |
https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-08-15T11:46:12
Updated: 2022-08-15T11:46:12
Reserved: 2022-06-18T00:00:00
Link: CVE-2022-33992
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-08-15T12:15:18.480
Modified: 2022-08-18T17:32:05.233
Link: CVE-2022-33992
JSON object: View
Redhat Information
No data.
CWE