Oval Definition:oval:org.opensuse.security:def:201711104
Revision Date:2022-05-22Version:1
Title:CVE-2017-11104
Description:

Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-11104
openSUSE-SU-2018:1395-1
openSUSE-SU-2020:1085-1
openSUSE-SU-2020:1086-1
openSUSE-SU-2020:1112-1
openSUSE-SU-2020:1232-1
Mitre CVE-2017-11104
SUSE CVE-2017-11104
openSUSE-SU-2018:1395-1
openSUSE-SU-2020:1085-1
openSUSE-SU-2020:1086-1
openSUSE-SU-2020:1112-1
openSUSE-SU-2020:1232-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
openSUSE Leap 42.3
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.0
SUSE Manager Proxy 4.1
SUSE Manager Server 4.0
SUSE Manager Server 4.1
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
Product(s):
Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • knot-1.6.5-5.3 is installed
  • AND knot is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • knot-1.6.8-lp151.4.3.1 is installed
  • AND knot is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • knot-1.6.8-lp152.5.3.1 is installed
  • AND knot is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND knot-1.6.8-bp151.4.3.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed
  • AND knot-1.6.8-bp152.4.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND knot-1.6.8-bp151.4.3.1 is installed
  • OR Package Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed
  • AND knot-1.6.8-bp152.4.3.1 is installed
    • BACK