CVE-2015-5695

Name of the Vulnerable Software and Affected Versions OpenStack Kilo Designate versions 2015.1.0 through 1.0.0.0b1

Description The issue does not properly enforce RecordSets per domain and Records per RecordSet quotas when processing an internal zone file transfer. This could allow remote attackers to cause a denial of service, potentially resulting in an infinite loop, via a crafted resource record set.

Recommendations For Designate versions 2015.1.0 through 1.0.0.0b1, as a temporary workaround, consider restricting the processing of internal zone file transfers to prevent potential denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.