• Tenable
  • CVEs
  • Settings
    Links
    Tenable.io Tenable Community & Support Tenable University
    Severity
    Theme
  • Tenable
  • Links
  • Tenable.io
  • Tenable Community & Support
  • Tenable University
  • Settings
  • Severity
  • Theme
  • Newest
  • Updated
  • Search
  • Newest
  • Updated
  • Search
  1. CVEs
  2. CVE-2022-2795
  1. CVEs

CVE-2022-2795

high
  • Information
  • CPEs
  • Plugins

Description

By flooding the target resolver with queries exploiting this flaw an attacker can significantly impair the resolver's performance, effectively denying legitimate clients access to the DNS resolution service.

References

https://kb.isc.org/docs/cve-2022-2795

http://www.openwall.com/lists/oss-security/2022/09/21/3

https://www.debian.org/security/2022/dsa-5235

https://lists.fedoraproject.org/archives/list/[email protected]/message/CV4GQWBPF7Y52J2FA24U6UMHQAOXZEF7/

https://lists.fedoraproject.org/archives/list/[email protected]/message/MRHB6J4Z7BKH4HPEKG5D35QGRD6ANNMT/

https://lists.fedoraproject.org/archives/list/[email protected]/message/YZJQNUASODNVAWZV6STKG5SD6XIJ446S/

https://lists.debian.org/debian-lts-announce/2022/10/msg00007.html

https://security.gentoo.org/glsa/202210-25

Details

Source: MITRE

Published: 2022-09-21

Updated: 2022-11-03

Type: CWE-400

  • Tenable.com
  • Community & Support
  • Documentation
  • Education
  • © 2023 Tenable®, Inc. All Rights Reserved
  • Privacy Policy
  • Legal
  • 508 Compliance