An issue was discovered in setTA in scan_rr.go in the Miek Gieben DNS library before 1.0.10 for Go. A dns.ParseZone() parsing error causes a segmentation violation, leading to denial of service.
Weakness
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dns_library | Dns_library_project | * | 1.0.10 (excluding) |
| Red Hat OpenShift Container Platform 4.10 | RedHat | openshift4/ose-kube-proxy:v4.10.0-202305261541.p0.g15f00b7.assembly.stream | * |
| Red Hat OpenShift Container Platform 4.11 | RedHat | openshift4/ose-kube-proxy:v4.11.0-202305240155.p0.g3018862.assembly.stream | * |
| Red Hat OpenShift Container Platform 4.12 | RedHat | openshift4/ose-kube-proxy:v4.12.0-202305212342.p0.gd4b6594.assembly.stream | * |
| Red Hat OpenShift Container Platform 4.13 | RedHat | openshift4/ose-kube-proxy:v4.13.0-202305180130.p0.gd56dc6a.assembly.stream | * |
| Red Hat OpenShift Container Platform 4.14 | RedHat | openshift4/ose-sdn-rhel8:v4.14.0-202310201027.p0.g128c28c.assembly.stream | * |
| Golang-github-miekg-dns | Ubuntu | bionic | * |
| Golang-github-miekg-dns | Ubuntu | cosmic | * |
| Golang-github-miekg-dns | Ubuntu | disco | * |
| Golang-github-miekg-dns | Ubuntu | eoan | * |
| Golang-github-miekg-dns | Ubuntu | esm-apps/bionic | * |
| Golang-github-miekg-dns | Ubuntu | esm-apps/focal | * |
| Golang-github-miekg-dns | Ubuntu | focal | * |
| Golang-github-miekg-dns | Ubuntu | groovy | * |
| Golang-github-miekg-dns | Ubuntu | hirsute | * |
| Golang-github-miekg-dns | Ubuntu | impish | * |
| Golang-github-miekg-dns | Ubuntu | kinetic | * |
| Golang-github-miekg-dns | Ubuntu | lunar | * |
| Golang-github-miekg-dns | Ubuntu | mantic | * |
| Golang-github-miekg-dns | Ubuntu | upstream | * |