Security Advisory 2020-12-09-1 - Linux kernel - ICMP rate limiting can be used to facilitate DNS poisoning attack (CVE-2020-25705)

Dear Turris users,

A few minutes ago, we received another email in OpenWrt development and OpenWrt announce mailing lists about new security advisory regarding SAD DNS - CVE-2020-25705.

We would like to ensure our customers that Sad DNS were fixed in Turris OS since versions:

  • Turris OS 5.1.4 was released 24 days ago.
  • Turris OS 3.11.21 was released 24 days ago.

If you are using an older version of Turris OS, we recommend you to update to the latest versions.

5 Likes