[Bug 1782225] Re: Cache poisoning vulnerability on the OS level DNS cache in Ubuntu
Dan Streetman
1782225 at bugs.launchpad.net
Wed Jun 30 21:58:46 UTC 2021
please reopen if this is still an issue
** Changed in: systemd (Ubuntu)
Status: Confirmed => Invalid
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to systemd in Ubuntu.
https://bugs.launchpad.net/bugs/1782225
Title:
Cache poisoning vulnerability on the OS level DNS cache in Ubuntu
Status in dnsmasq package in Ubuntu:
Confirmed
Status in systemd package in Ubuntu:
Invalid
Bug description:
We would like to report a cache poisoning vulnerability on the OS
level DNS cache in Ubuntu. This vulnerability allows an off-path
attacker to impersonate the DNS resolver and poisons the OS-wide DNS
cache directly or through a port-preserving NAT. We have a paper
describing the problem, please see the attachment.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1782225/+subscriptions
More information about the foundations-bugs
mailing list