|
Bugzilla – Full Text Bug Listing |
| Summary: | VUL-0: CVE-2023-7008: systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes | ||
|---|---|---|---|
| Product: | [Novell Products] SUSE Security Incidents | Reporter: | SMASH SMASH <smash_bz> |
| Component: | Incidents | Assignee: | Security Team bot <security-team> |
| Status: | RESOLVED FIXED | QA Contact: | Security Team bot <security-team> |
| Severity: | Normal | ||
| Priority: | P3 - Medium | CC: | fbui, gabriele.sonnu, gianluca.gabrielli |
| Version: | unspecified | ||
| Target Milestone: | --- | ||
| Hardware: | Other | ||
| OS: | Other | ||
| URL: | https://smash.suse.de/issue/388806/ | ||
| Whiteboard: | CVSSv3.1:SUSE:CVE-2023-7008:5.9:(AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N) | ||
| Found By: | Security Response Team | Services Priority: | |
| Business Priority: | Blocker: | --- | |
| Marketing QA Status: | --- | IT Deployment: | --- |
|
Description
SMASH SMASH
2023-12-21 08:42:19 UTC
Upstream issue: https://github.com/systemd/systemd/issues/25676 Upstream fix: https://github.com/systemd/systemd/commit/3b4cc1437b51fcc0b08da8cc3f5d1175eed25eb1 Affected code found in: - SUSE:ALP:Source:Standard:1.0/systemd - SUSE:SLE-15-SP4:Update/systemd - openSUSE:Factory/systemd (In reply to Gabriele Sonnu from comment #2) > Upstream fix: > > https://github.com/systemd/systemd/commit/ > 3b4cc1437b51fcc0b08da8cc3f5d1175eed25eb1 > This fix has already been released for these code streams: > Affected code found in: > > - SUSE:ALP:Source:Standard:1.0/systemd > - SUSE:SLE-15-SP4:Update/systemd > - openSUSE:Factory/systemd However the reference of this issue in the respective changelogs was missing. This has been addressed but I don't think it's worth submitting this single change alone. Reassigning to the security team. This is an autogenerated message for OBS integration: This bug (1218297) was mentioned in https://build.opensuse.org/request/show/1144939 Factory / systemd All done, closing. |