CVE-2015-5694: Designate does not enforce the DNS protocol limit concerning record set sizes

May 24, 2022 (updated November 21, 2024)

Designate does not enforce the DNS protocol limit concerning record set sizes

References

bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-5694
github.com/advisories/GHSA-c33m-22cr-j9x4
github.com/openstack/designate
github.com/pypa/advisory-database/tree/main/vulns/designate/PYSEC-2019-243.yaml
nvd.nist.gov/vuln/detail/CVE-2015-5694
security-tracker.debian.org/tracker/CVE-2015-5694

Detect and mitigate CVE-2015-5694 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →