[Secure-testing-commits] r52846 - data/CVE

Yves-Alexis Perez corsac at moszumanska.debian.org
Fri Jun 23 14:19:23 UTC 2017


Author: corsac
Date: 2017-06-23 14:19:23 +0000 (Fri, 23 Jun 2017)
New Revision: 52846

Modified:
   data/CVE/list
Log:
add temporary entry for knot


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-23 11:23:40 UTC (rev 52845)
+++ data/CVE/list	2017-06-23 14:19:23 UTC (rev 52846)
@@ -1,3 +1,7 @@
+CVE-2017-XXXX [Improper TSIG validity period check can allow TSIG forgery]
+	- knot <unfixed> 
+	NOTE: https://lists.nic.cz/pipermail/knot-dns-users/2017-June/001144.html
+	NOTE: http://www.synacktiv.ninja/ressources/Knot_DNS_TSIG_Signature_Forgery.pdf
 CVE-2017-9825
 	RESERVED
 CVE-2017-9824




More information about the Secure-testing-commits mailing list