Product

Hickory-Proto (0.25.0-Alpha.3 to 0.25.2)

1 brief RSS

Hickory DNS NSEC3 Validation Vulnerability Leads to DoS

A vulnerability in Hickory DNS's NSEC3 closest-encloser proof validation allows a remote attacker to cause a denial of service by exhausting memory when processing crafted DNS responses with mismatched SOA records.

hickory-proto +1 denial-of-service dnssec memory-exhaustion

2r 1t Jan 3, 2024