Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2018-14644HistoryNov 09, 2018 - 7:29 p.m.
CVE-2018-14644
2018-11-0919:29:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.002 Low
EPSS
Percentile
64.6%
An issue has been found in PowerDNS Recursor from 4.0.0 up to and including 4.1.4. A remote attacker sending a DNS query for a meta-type like OPT can lead to a zone being wrongly cached as failing DNSSEC validation. It only arises if the parent zone is signed, and all the authoritative servers for that parent zone answer with FORMERR to a query for at least one of the meta-types. As a result, subsequent queries from clients requesting DNSSEC validation will be answered with a ServFail.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pdns-recursor | < 4.1.7-1 | pdns-recursor_4.1.7-1_all.deb |
| Debian | 11 | all | pdns-recursor | < 4.1.7-1 | pdns-recursor_4.1.7-1_all.deb |
| Debian | 10 | all | pdns-recursor | < 4.1.7-1 | pdns-recursor_4.1.7-1_all.deb |
| Debian | 999 | all | pdns-recursor | < 4.1.7-1 | pdns-recursor_4.1.7-1_all.deb |
| Debian | 13 | all | pdns-recursor | < 4.1.7-1 | pdns-recursor_4.1.7-1_all.deb |
Related
veracode
veracode
Wrong DNS Zone Caching
2020-08-06 21:37:52
cve
cve
CVE-2018-14644
2018-11-09 19:29:00
osv
osv
CVE-2018-14644
2018-11-09 19:29:00
prion
prion
Design/Logic Flaw
2018-11-09 19:29:00
alpinelinux
alpinelinux
CVE-2018-14644
2018-11-09 19:29:00
ubuntucve
ubuntucve
CVE-2018-14644
2018-11-09 00:00:00
cvelist
cvelist
CVE-2018-14644
2018-11-09 19:00:00
openvas
openvas
PowerDNS Recursor Multiple DoS Vulnerabilities
2018-11-07 00:00:00
openSUSE: Security Advisory for pdns-recursor (openSUSE-SU-2018:4151-1)
2018-12-18 00:00:00
openSUSE: Security Advisory for pdns-recursor (openSUSE-SU-2018:4151-1)
2018-12-18 00:00:00
nessus
nessus
openSUSE Security Update : pdns-recursor (openSUSE-2018-1564)
2018-12-18 00:00:00
FreeBSD : powerdns-recursor -- Multiple vulnerabilities (e9aa0e4c-ea8b-11e8-a5b7-00e04c1ea73d)
2018-11-19 00:00:00
Fedora 28 : pdns-recursor (2018-c341b70641)
2019-01-03 00:00:00
archlinux
archlinux
[ASA-201811-13] powerdns-recursor: denial of service
2018-11-12 00:00:00
suse
suse
Security update for pdns-recursor (moderate)
2018-12-17 21:09:00
Security update for pdns-recursor (moderate)
2018-12-10 18:16:51
Security update for pdns-recursor (moderate)
2018-12-17 21:09:39
freebsd
freebsd
powerdns-recursor -- Multiple vulnerabilities
2018-11-06 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: pdns-recursor-4.1.8-1.fc29
2018-12-16 04:22:46
[SECURITY] Fedora 28 Update: pdns-recursor-4.1.8-1.fc28
2018-12-16 02:24:51
[SECURITY] Fedora 28 Update: pdns-recursor-4.1.9-1.fc28
2019-02-13 06:15:07
mageia
mageia
Updated pdns-recursor packages fix security vulnerabilities
2019-01-05 21:30:16