dnspython@2.0.0 vulnerabilities

DNS toolkit

Direct Vulnerabilities

Known vulnerabilities in the dnspython package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • M
Incorrect Behavior Order

Affected versions of this package are vulnerable to Incorrect Behavior Order in the DNS pre-processing pipeline, which allows an off-path attacker who can spoof the source IP address of a malformed DNS response packet to cause denial of service. The UDP processing functions in query.py and asyncquery.py accept the first-arriving packet before closing the receiving socket, allowing the attacker to make the remote nameserver appear unavailable for the target resolver and clients.

How to fix Incorrect Behavior Order?

Upgrade dnspython to version 2.6.1 or higher.

[,2.6.1)