Metadata
- Source
- SJRK-427
- Type
- Task
- Priority
- Major
- Status
- Closed
- Resolution
- Fixed
- Assignee
- Giovanni Tirloni
- Reporter
- Giovanni Tirloni
- Created
2020-11-16T11:59:30.779-0500 - Updated
2020-11-23T16:15:38.010-0500 - Versions
- N/A
- Fixed Versions
- N/A
- Component
- N/A
Description
https://nodejs.org/en/blog/vulnerability/november-2020-security-releases/
Denial of Service through DNS request (CVE-2020-8277)
A Node.js application that allows an attacker to trigger a DNS request for a host of their choice could trigger a Denial of service by getting the application to resolve a DNS record with a larger number of responses.