Vulnerabilities > CVE-2018-1110 - Unspecified vulnerability in NIC Knot Resolver

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nessus

NVD

Published: 2021-03-30

Updated: 2024-11-21

Summary

A flaw was found in knot-resolver before version 2.3.0. Malformed DNS messages may cause denial of service.

Part	Description	Count
Application	Nic NIC Knot Resolver - NIC Knot Resolver 1.0.0 NIC Knot Resolver 1.1.0 NIC Knot Resolver 1.1.1 NIC Knot Resolver 1.2.0 NIC Knot Resolver 1.2.1 NIC Knot Resolver 1.2.2 NIC Knot Resolver 1.2.3 NIC Knot Resolver 1.2.4 NIC Knot Resolver 1.2.5 NIC Knot Resolver 1.2.6 NIC Knot Resolver 1.3.0 NIC Knot Resolver 1.3.1 NIC Knot Resolver 1.3.2 NIC Knot Resolver 1.3.3 NIC Knot Resolver 1.4.0 NIC Knot Resolver 1.5.0 NIC Knot Resolver 1.5.1 NIC Knot Resolver 1.5.2 NIC Knot Resolver 1.5.3 NIC Knot Resolver 1.99.1 NIC Knot Resolver 2.0.0 NIC Knot Resolver 2.1.0 NIC Knot Resolver 2.1.1 NIC Knot Resolver 2.2.0	32

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2018-A120D509AB.NASL
description	Knot Resolver 2.3.0 (2018-04-23) ================================ Security -------- - fix CVE-2018-1110: denial of service triggered by malformed DNS messages (!550, !558, security!2, security!4) - increase resilience against slow lorris attack (security!5) Bugfixes -------- - validation: fix SERVFAIL in case of CNAME to NXDOMAIN in a single zone (!538) - validation: fix SERVFAIL for DS . query (!544) - lib/resolve: don
last seen	2020-06-05
modified	2018-05-11
plugin id	109709
published	2018-05-11
reporter	This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/109709
title	Fedora 27 : knot-resolver (2018-a120d509ab)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2018-389BC4E911.NASL
description	Knot Resolver 2.3.0 (2018-04-23) ================================ Security -------- - fix CVE-2018-1110: denial of service triggered by malformed DNS messages (!550, !558, security!2, security!4) - increase resilience against slow lorris attack (security!5) Bugfixes -------- - validation: fix SERVFAIL in case of CNAME to NXDOMAIN in a single zone (!538) - validation: fix SERVFAIL for DS . query (!544) - lib/resolve: don
last seen	2020-06-05
modified	2019-01-03
plugin id	120353
published	2019-01-03
reporter	This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/120353
title	Fedora 28 : knot-resolver (2018-389bc4e911)

NASL family	Fedora Local Security Checks
NASL id	FEDORA_2018-0C0671072B.NASL
description	Knot Resolver 2.3.0 (2018-04-23) ================================ Security -------- - fix CVE-2018-1110: denial of service triggered by malformed DNS messages (!550, !558, security!2, security!4) - increase resilience against slow lorris attack (security!5) Bugfixes -------- - validation: fix SERVFAIL in case of CNAME to NXDOMAIN in a single zone (!538) - validation: fix SERVFAIL for DS . query (!544) - lib/resolve: don
last seen	2020-06-05
modified	2018-05-11
plugin id	109702
published	2018-05-11
reporter	This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/109702
title	Fedora 26 : knot-resolver (2018-0c0671072b)