CVE-2022-22846

DNS reply verification issue in dnslinb in pypi/dnslib

Identifiers

GHSA-r478-c2pc-m7gx, CVE-2022-22846

Package Slug

pypi/dnslib

Vulnerability

DNS reply verification issue in dnslinb

Description

The dnslib package for Python does not verify that the ID value in a DNS reply matches an ID value in a query.

Affected Versions

All versions before 0.9.17

Solution

Upgrade to version 0.9.17 or above.

Last Modified

2022-01-13

source