NIXPKGS-2026-1906

GitHub issue published 14 hours ago

Insufficient verification that responses belong to a query

Permalink CVE-2026-10846

8.2 HIGH

CVSS version (CVSS): 4.0
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Attack Requirement (AT): Present (P)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Vulnerable System Impact Confidentiality (VC): None (N)
Vulnerable System Impact Integrity (VI): High (H)
Vulnerable System Impact Availability (VA): None (N)
Subsequent System Impact Confidentiality (SC): None (N)
Subsequent System Impact Integrity (SI): None (N)
Subsequent System Impact Availability (SA): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Attack Requirement (MAT): Present (P)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Vulnerable System Impact Confidentiality (MVC): None (N)
Modified Vulnerable System Impact Integrity (MVI): High (H)
Modified Vulnerable System Impact Availability (MVA): None (N)
Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
Modified Subsequent System Impact Integrity (MSI): Negligible (N)
Modified Subsequent System Impact Availability (MSA): Negligible (N)
Safety (S): Not Defined (X)
Automatable (AU): Not Defined (X)
Recovery (R): Not Defined (X)
Value Density (V): Not Defined (X)
Vulnerability Response Effort (RE): Not Defined (X)
Provider Urgency (U): Not Defined (X)
Confidentiality Req. (CR): Not Defined (X)
Integrity Req. (IR): Not Defined (X)
Availability Req. (AR): Not Defined (X)
Exploit Maturity (E): Not Defined (X)

updated 14 hours ago by @LeSuisse Activity log

Created suggestion 20 hours ago
@LeSuisse ignored
4 packages
- perlPackages.ZonemasterLDNS
- perl5Packages.ZonemasterLDNS
- terraform-providers.vinyldns
- terraform-providers.vinyldns_vinyldns
14 hours ago
@LeSuisse accepted 14 hours ago
@LeSuisse published on GitHub 14 hours ago

Insufficient verification that responses belong to a query

NLnet Labs ldns 1.2.0 up to and including versions 1.9.0, when used in applications as (stub) resolver over UDP, lacks matching the query destination address and port with the response source address and port. Furthermore not the query ID, neither the question of the query is matched with that of the response. This makes applications, that use ldns for (stub) resolver functionality over UDP, vulnerable for off-path poisoning attacks. The drill tool, which is shipped with ldns, suffers from this vulnerability.

References

Affected products

ldns

<1.9.1

Matching in nixpkgs

pkgs.ldns

Library with the aim of simplifying DNS programming in C

nixos-unstable 1.9.0
- nixpkgs-unstable 1.9.0
- nixos-unstable-small 1.9.0
nixos-26.05 1.9.0
- nixos-26.05-small 1.9.0
- nixpkgs-26.05-darwin 1.9.0

Ignored packages (4)

pkgs.perlPackages.ZonemasterLDNS

Perl wrapper for the ldns DNS library

nixos-unstable 3.2.0
- nixpkgs-unstable 3.2.0
- nixos-unstable-small 3.2.0
nixos-26.05 3.2.0
- nixos-26.05-small 3.2.0
- nixpkgs-26.05-darwin 3.2.0

pkgs.perl5Packages.ZonemasterLDNS

Perl wrapper for the ldns DNS library

nixos-unstable 3.2.0
- nixpkgs-unstable 3.2.0
- nixos-unstable-small 3.2.0
nixos-26.05 3.2.0
- nixos-26.05-small 3.2.0
- nixpkgs-26.05-darwin 3.2.0

pkgs.terraform-providers.vinyldns

None

nixos-unstable 0.10.3
- nixpkgs-unstable 0.10.3
- nixos-unstable-small 0.10.3
nixos-26.05 0.10.3
- nixos-26.05-small 0.10.3
- nixpkgs-26.05-darwin 0.10.3

pkgs.terraform-providers.vinyldns_vinyldns