CVE-2017-15908

UNKNOWN

Published 2017-10-26T14:00:00

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2017-15908. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

In systemd 223 through 235, a remote DNS server can respond with a custom crafted DNS NSEC resource record to trigger an infinite loop in the dns_packet_read_type_window() function of the 'systemd-resolved' service and cause a DoS of the affected service.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-7jr2-6c89-rmhp

Advisory Details

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2017-15908

WEB https://github.com/systemd/systemd/pull/7184

WEB https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1725351

WEB https://usn.ubuntu.com/3558-1

WEB http://www.securityfocus.com/bid/101600

WEB http://www.securitytracker.com/id/1039662

Advisory provided by GitHub Security Advisory Database. Published: May 13, 2022, Modified: April 20, 2025

Social Media Intelligence

Real-time discussions and threat intelligence from social platforms

1 post

Reddit • 2 months, 1 week ago

puscii

Exploit

the Anti-Nationale 动态网自由门天安門天安门法輪功李洪志 Free Tibet 六四天安門事件 The Tiananmen Square protests of 1989 天安門大屠殺 The Tiananmen Square Massacre 反右派鬥爭 The Anti-Rightist Struggle 大躍進政策 The Great Leap Forward 文化大革命 The Great Proletarian Cultural Revolution 人權 Human Rights 民運 Democratization 自由 Freedom 獨立 Independence 多黨制 Multi-party system 台灣臺灣 …