vulnerability

Amazon Linux 2023: CVE-2023-7008: Medium priority package update for systemd

Try Surface Command
Back to search
Severity
5
CVSS
(AV:N/AC:H/Au:N/C:N/I:C/A:N)
Published
2022-12-08
Added
2025-02-17
Modified
2025-02-17

Description

A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the upstream DNS resolver) to manipulate records.

Solution(s)

amazon-linux-2023-upgrade-systemdamazon-linux-2023-upgrade-systemd-boot-unsignedamazon-linux-2023-upgrade-systemd-boot-unsigned-debuginfoamazon-linux-2023-upgrade-systemd-containeramazon-linux-2023-upgrade-systemd-container-debuginfoamazon-linux-2023-upgrade-systemd-debuginfoamazon-linux-2023-upgrade-systemd-debugsourceamazon-linux-2023-upgrade-systemd-develamazon-linux-2023-upgrade-systemd-journal-remoteamazon-linux-2023-upgrade-systemd-journal-remote-debuginfoamazon-linux-2023-upgrade-systemd-libsamazon-linux-2023-upgrade-systemd-libs-debuginfoamazon-linux-2023-upgrade-systemd-networkdamazon-linux-2023-upgrade-systemd-networkd-debuginfoamazon-linux-2023-upgrade-systemd-oomd-defaultsamazon-linux-2023-upgrade-systemd-pamamazon-linux-2023-upgrade-systemd-pam-debuginfoamazon-linux-2023-upgrade-systemd-resolvedamazon-linux-2023-upgrade-systemd-resolved-debuginfoamazon-linux-2023-upgrade-systemd-rpm-macrosamazon-linux-2023-upgrade-systemd-standalone-sysusersamazon-linux-2023-upgrade-systemd-standalone-sysusers-debuginfoamazon-linux-2023-upgrade-systemd-standalone-tmpfilesamazon-linux-2023-upgrade-systemd-standalone-tmpfiles-debuginfoamazon-linux-2023-upgrade-systemd-testsamazon-linux-2023-upgrade-systemd-tests-debuginfoamazon-linux-2023-upgrade-systemd-udevamazon-linux-2023-upgrade-systemd-udev-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today