knot-resolver 3.2.1-3ubuntu2.1 source package in Ubuntu
Changelog
knot-resolver (3.2.1-3ubuntu2.1) focal-security; urgency=medium
* SECURITY UPDATE: denial of service issue when server returns large ns or
address sets
- debian/patches/CVE-2022-40188.patch: address throttling introduced for
large responses.
- CVE-2022-40188
-- Evan Caville <email address hidden> Mon, 26 Jun 2023 11:44:34 +1000
Upload details
- Uploaded by:
- Evan Caville
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- amd64 armel armhf i386 mips mips64el mipsel ppc64 ppc64el all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | universe | misc | |
| Focal | security | universe | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| knot-resolver_3.2.1.orig.tar.xz | 1.7 MiB | d1396888ec3a63f19dccdf2b7dbcb0d16a5d8642766824b47f4c21be90ce362b |
| knot-resolver_3.2.1.orig.tar.xz.asc | 833 bytes | cc11c3e652e88a286bdfb95bf34f68f8cd2ac79dc23f2643430e344aee22c66a |
| knot-resolver_3.2.1-3ubuntu2.1.debian.tar.xz | 427.8 KiB | 61d9b0146fee725c24ed56c32ff7dc5510a79ea99507477a234af5aca01da9b6 |
| knot-resolver_3.2.1-3ubuntu2.1.dsc | 3.1 KiB | 72450f6142f83893cca86e9f3d3d006416226ed8df2b57710096849cff611222 |
Available diffs
Binary packages built by this source
- knot-resolver: caching, DNSSEC-validating DNS resolver
The Knot DNS Resolver is a caching full resolver implementation
written in C and LuaJIT, including both a resolver library and a
daemon. Modular architecture of the library keeps the core tiny and
efficient, and provides a state-machine like API for
extensions. There are three built-in modules - iterator, cache,
validator, and many external.
.
The Lua modules, switchable and shareable cache, and fast FFI
bindings makes it great to tap into resolution process, or be used
for your recursive DNS service. It's the OpenResty of DNS.
.
The server adopts a different scaling strategy than the rest of the
DNS recursors - no threading, shared-nothing architecture (except
MVCC cache that may be shared). You can start and stop additional
nodes depending on the contention without downtime.
- knot-resolver-dbgsym: debug symbols for knot-resolver
- knot-resolver-doc: Documentation for Knot Resolver
The Knot DNS Resolver is a caching full resolver implementation
written in C and LuaJIT, including both a resolver library and a
daemon. Modular architecture of the library keeps the core tiny and
efficient, and provides a state-machine like API for
extensions. There are three built-in modules - iterator, cache,
validator, and many external.
.
This package contains Knot Resolver Documentation.
- knot-resolver-module-http: HTTP/2 module for Knot Resolver
The Knot DNS Resolver is a caching full resolver implementation
written in C and LuaJIT, including both a resolver library and a
daemon. Modular architecture of the library keeps the core tiny and
efficient, and provides a state-machine like API for
extensions. There are three built-in modules - iterator, cache,
validator, and many external.
.
This package contains HTTP/2 module for local visualization of the
resolver cache and queries.
