GHSA-f7cq-5v43-8pwp: Traefik vulnerable to GO issue allowing malformed DNS message to cause infinite loop
There is a vulnerability in GO managing malformed DNS message, which impacts Traefik. This vulnerability could be exploited to cause a denial of service.
References
- github.com/advisories/GHSA-5fq7-4mxc-535h
- github.com/advisories/GHSA-f7cq-5v43-8pwp
- github.com/traefik/traefik
- github.com/traefik/traefik/releases/tag/v2.11.3
- github.com/traefik/traefik/releases/tag/v3.0.1
- github.com/traefik/traefik/security/advisories/GHSA-f7cq-5v43-8pwp
- www.cve.org/CVERecord?id=CVE-2024-24788
Detect and mitigate GHSA-f7cq-5v43-8pwp with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →