CVE-2020-5591

Name of the Vulnerable Software and Affected Versions: XACK DNS versions 1.11.0 through 1.11.4 XACK DNS versions 1.10.0 through 1.10.8 XACK DNS versions 1.8.0 through 1.8.23 XACK DNS versions 1.7.0 through 1.7.18 XACK DNS versions prior to 1.7.0

Description: The issue allows remote attackers to cause a denial of service condition, resulting in degradation of the recursive resolver's performance or compromising the recursive resolver as a reflector in a reflection attack. This is caused by uncontrolled recursion.

Recommendations: For versions 1.11.0 through 1.11.4, update to a version that controls recursion to prevent the denial of service condition. For versions 1.10.0 through 1.10.8, update to a version that controls recursion to prevent the denial of service condition. For versions 1.8.0 through 1.8.23, update to a version that controls recursion to prevent the denial of service condition. For versions 1.7.0 through 1.7.18, update to a version that controls recursion to prevent the denial of service condition. For versions prior to 1.7.0, update to a version that controls recursion to prevent the denial of service condition.