knot-resolver: NXNSAttack mitigation (CVE-2020-12667)
Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This is triggered by random subdomains in the NSDNAME in NS records.
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information