SUSE-SU-2023:2760-1 -- SLES dnsdist, libluajit-5_1-2ID: oval:org.secpod.oval:def:89049043 | Date: (C)2023-07-18 (M)2024-04-25 |
Class: PATCH | Family: unix |
This update for dnsdist fixes the following issues: * update to 1.8.0 * Implements dnsdist in SLE15 * Security fix: fixes a possible record smugging with a crafted DNS query with trailing data * update to 1.2.0 This release also addresses two security issues of low severity, CVE-2016-7069 and CVE-2017-7557. The first issue can lead to a denial of service on 32-bit if a backend sends crafted answers, and the second to an alteration of dnsdist's ACL if the API is enabled, writable and an authenticated user is tricked into visiting a crafted website.
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Server 15 SP4 |
Product: |
dnsdist |
libluajit-5_1-2 |