Launchpad.net

CVE 2017-12133

The DNS stub resolver in the GNU C Library (glibc) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path DNS spoofing attackers due to IP fragmentation.

See the CVE page on Mitre.org for more details.