Stories
Slash Boxes
Comments

SoylentNews is people

Submission Preview

systemd-resolvd vulnerability

Rejected submission by Anonymous Coward at 2017-06-28 13:55:06 from the "hey, let's put a DNS resolver in our init system", said no one, ever, except Linus Pootering dept.
OS

An Anonymous Coward writes:

systemd-resolvd, SystemD's DNS resolver, is vulnerable to "specially crafted DNS responses" [ubuntu.com]. It's also vulnerable to over-engineering [dns-oarc.net]:

"The process turns a request for binary DNS data into into XML, feeds it into the sytemd/dus ecosystem, which turns it into binary DNS to send it to the forwarder. The binary DNS answer then gets turned into XML goes through systemd/dbus, then is turned back into binary DNS to feed back into glibc"

Original Submission