Incorrect validation of root DNSSEC public keys in github.com/peterzen/goresolver

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain.

N/A

N/A

go-resolver 数据伪造问题漏洞

go-resolver是peterzen个人开发者的一个在 miekg/dns 之上实现的 Golang DNSSEC 验证解析器库。 go-resolver存在安全漏洞，该漏洞源于DNSSEC验证未正确执行。

N/A

N/A