CVE-2016-6171
Published
CVSS v3
8.6
HIGH
CVSS v2
5
MEDIUM
Affected
1
PROJECT
Description
Knot DNS before 2.3.0 allows remote DNS servers to cause a denial of service (memory exhaustion and slave server crash) via a large zone transfer for (1) DDNS, (2) AXFR, or (3) IXFR.
These patches provide the limitation of AXFR data size for "BIND", "NSD", "knot DNS", "PowerDNS" in Secondary DNS providers.
GitHub