Debian Golang-Github-Miekg-Dns vulnerabilities
2 known vulnerabilities affecting debian/golang-github-miekg-dns.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2019-19794MEDIUMCVSS 5.9fixed in golang-github-miekg-dns 1.1.26-1 (bookworm)2019
CVE-2019-19794 [MEDIUM] CVE-2019-19794: golang-github-miekg-dns - The miekg Go DNS package before 1.1.25, as used in CoreDNS before 1.6.6 and othe...
The miekg Go DNS package before 1.1.25, as used in CoreDNS before 1.6.6 and other products, improperly generates random numbers because math/rand is used. The TXID becomes predictable, leading to response forgeries.
Scope: local
bookworm: resolved (fixed in 1.1.26-1)
bullseye: resolved (fixed in 1.1.26-1)
forky: resolved (fixed in 1.1.26-1)
sid: re
debian
CVE-2017-15133HIGHCVSS 7.5fixed in golang-github-miekg-dns 0.0~git20170501.0.f282f80-3 (bookworm)2017
CVE-2017-15133 [HIGH] CVE-2017-15133: golang-github-miekg-dns - A denial of service flaw was found in miekg-dns before 1.0.4. A remote attacker ...
A denial of service flaw was found in miekg-dns before 1.0.4. A remote attacker could use carefully timed TCP packets to block the DNS server from accepting new connections.
Scope: local
bookworm: resolved (fixed in 0.0~git20170501.0.f282f80-3)
bullseye: resolved (fixed in 0.0~git20170501.0.f282f80-3)
forky: resolved (fixed in 0.0~git20170501.0.f282f
debian