Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-5695

Designate 2015.1.0 through 1.0.0.0b1 as packaged in OpenStack Kilo does not enforce RecordSets per domain, and Records per RecordSet quotas when processing an internal zone file transfer, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted resource record set.

Related bugs and status

CVE-2015-5695 (Candidate) is related to these bugs:

Bug #1471161: Designate mDNS DoS through incorrect handling of large RecordSets

		In	Importance	Status
1471161	Designate mDNS DoS through incorrect handling of large RecordSets	Designate	Critical	Fix Released
1471161	Designate mDNS DoS through incorrect handling of large RecordSets	Designate kilo	Critical	Fix Committed
1471161	Designate mDNS DoS through incorrect handling of large RecordSets	designate (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [Openstack] 20150728 [...
MLIST: [oss-security] 2015072...
MLIST: [oss-security] 2015072...
CONFIRM: https://bugs.launchpad...
CONFIRM: https://bugzilla.redha...
CONFIRM: https://launchpadlibra...