CVE-2023-26249 Information

Description

Knot Resolver before 5.6.0 enables attackers to consume its resources launching amplification attacks and potentially causing a denial of service. Specifically a single client query may lead to a hundred TCP connection attempts if a DNS server closes connections without providing a response.

Reference

https://www.knot-resolver.cz/2023-01-26-knot-resolver-5.6.0.html