← voltar
CVE-2024-24788

Malformed DNS message can cause infinite loop in net

CVSS 5.9 MEDIUMEPSS 1.0%CWE-835
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
Go standard library · net

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://go.dev/cl/578375https://go.dev/issue/66754https://groups.google.com/g/golang-announce/c/wkkO4P9stm0https://pkg.go.dev/vuln/GO-2024-2824https://security.netapp.com/advisory/ntap-20240605-0002/https://security.netapp.com/advisory/ntap-20240614-0001/http://www.openwall.com/lists/oss-security/2024/05/08/3