CVE-2017-15133: Uncontrolled Resource Consumption

June 29, 2021

A denial of service flaw was found in miekg-dns before 1.0.4. A remote attacker could use carefully timed TCP packets to block the DNS server from accepting new connections.

References

github.com/advisories/GHSA-p55x-7x9v-q8m4
github.com/miekg/dns/commit/43913f2f4fbd7dcff930b8a809e709591e4dd79e
github.com/miekg/dns/issues/627
github.com/miekg/dns/pull/631
nvd.nist.gov/vuln/detail/CVE-2017-15133

Detect and mitigate CVE-2017-15133 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →