Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2018-1000135 - log back

CVE-2018-1000135 created at 25 Sep 2019 19:31:40

Severity

+

Medium

Remote

+

Remote

Type

+	Information disclosure

Description

+	GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, while on VPN.

References

+	https://bugzilla.redhat.com/show_bug.cgi?id=1553634
+	https://bugzilla.gnome.org/show_bug.cgi?id=746422
+	https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1754671

Notes