DebianDEBIAN:DLA-104-1:49028[SECURITY] [DLA 104-1] pdns-recursor security update
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.123 Low
EPSS
Percentile
95.3%
Package : pdns-recursor
Version : 3.2-4+deb6u1
CVE ID : CVE-2014-8601
Florian Maury from ANSSI discovered a flaw in pdns-recursor, a
recursive DNS server : a remote attacker controlling
maliciously-constructed zones or a rogue server could affect the
performance of pdns-recursor, thus leading to resource exhaustion and
a potential denial-of-service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 7 | powerpc | pdns-recursor | < 3.3-3+deb7u1 | pdns-recursor_3.3-3+deb7u1_powerpc.deb |
| Debian | 7 | kfreebsd-amd64 | pdns-recursor-dbg | < 3.3-3+deb7u1 | pdns-recursor-dbg_3.3-3+deb7u1_kfreebsd-amd64.deb |
| Debian | 7 | mips | pdns-recursor | < 3.3-3+deb7u1 | pdns-recursor_3.3-3+deb7u1_mips.deb |
| Debian | 7 | s390x | pdns-recursor-dbg | < 3.3-3+deb7u1 | pdns-recursor-dbg_3.3-3+deb7u1_s390x.deb |
| Debian | 7 | kfreebsd-i386 | pdns-recursor | < 3.3-3+deb7u1 | pdns-recursor_3.3-3+deb7u1_kfreebsd-i386.deb |
| Debian | 7 | s390x | pdns-recursor | < 3.3-3+deb7u1 | pdns-recursor_3.3-3+deb7u1_s390x.deb |
| Debian | 7 | mipsel | pdns-recursor-dbg | < 3.3-3+deb7u1 | pdns-recursor-dbg_3.3-3+deb7u1_mipsel.deb |
| Debian | 7 | mipsel | pdns-recursor | < 3.3-3+deb7u1 | pdns-recursor_3.3-3+deb7u1_mipsel.deb |
| Debian | 7 | all | pdns-recursor | < 3.3-3+deb7u1 | pdns-recursor_3.3-3+deb7u1_all.deb |
| Debian | 6 | all | pdns-recursor | < 3.2-4+deb6u1 | pdns-recursor_3.2-4+deb6u1_all.deb |
Related
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.123 Low
EPSS
Percentile
95.3%