244 matches found
CVE-2026-33254
CVE-2026-33254 affects PowerDNS DNSdist. An attacker can open a large number of concurrent DoQ/DoH3 connections, causing unbounded memory allocation and denial of service. DoQ/DoH3 are disabled by default, which mitigates impact per the sources; no patch/version details are provided in the docume...
CVE-2026-33254 Resource exhaustion via DoQ/DoH3 connections
An attacker can create a large number of concurrent DoQ or DoH3 connections, causing unlimited memory allocation in DNSdist and leading to a denial of service. DOQ and DoH3 are disabled by default...
PowerDNS DNSdist 输入验证错误漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a vulnerability related to input validation errors. This vulnerability arises when clients may send a large number of precisely timed...
PowerDNS DNSdist 数字错误漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a numerical error vulnerability; this vulnerability stems from the ability of clients to trigger a zero error by sending a specially...
PowerDNS DNSdist 安全漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS that offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from the ability of clients to trigger excessive memory allocation by generating numerous error...
PowerDNS DNSdist 安全漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS that offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from the ability of clients to trigger excessive memory allocation by generating a large number of...
PowerDNS DNSdist和PowerDNS Authoritative 安全漏洞
PowerDNS DNSdist and PowerDNS Authoritative are both products of the PowerDNS company. PowerDNS DNSdist is a proxy software that provides DNS traffic load balancing and security protection capabilities. PowerDNS Authoritative is a DNS server software. Both PowerDNS DNSdist and PowerDNS...
PowerDNS DNSdist和PowerDNS Authoritative 安全漏洞
PowerDNS DNSdist and PowerDNS Authoritative are both products of the PowerDNS company. PowerDNS DNSdist is a proxy software that provides DNS traffic load balancing and security protection capabilities. PowerDNS Authoritative is a DNS server software. Both PowerDNS DNSdist and PowerDNS...
PowerDNS DNSdist 安全漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from malicious backends capable of sending specially crafted UDP responses with query IDs differing...
PowerDNS DNSdist 缓冲区错误漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a buffer error vulnerability. This vulnerability stems from custom Lua code that calls getDomainListByAddress or getAddressListByDomain...
PowerDNS DNSdist 缓冲区错误漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS that offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a buffer error vulnerability, which stems from malicious backends that can send specially crafted SVCB responses to resolver discovery...
PowerDNS DNSdist 安全漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS that offers DNS traffic load balancing and security protection capabilities. PowerDNS DNSdist has a security vulnerability, which stems from detection issues and may lead to denial-of-service attacks...
Linux Distros Unpatched Vulnerability : CVE-2026-33254
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker can create a large number of concurrent DoQ or DoH3 connections, causing unlimited memory allocation in DNSdist and leading to a denial of service...
Fedora 42 : dnsdist (2026-637c11815f)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-637c11815f advisory. Update to latest upstream Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 43 : dnsdist (2026-6cae4711b3)
The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-6cae4711b3 advisory. Update to latest upstream Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
SUSE: Security Advisory (SUSE-SU-2026:20995-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD : DNSdist -- vulnerabilities (431c2753-3503-11f1-bc6d-3c7c3fba4204)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 431c2753-3503-11f1-bc6d-3c7c3fba4204 advisory. https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-02.html reports...
[SECURITY] Fedora 42 Update: dnsdist-1.9.12-1.fc42
dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic...
[SECURITY] Fedora 43 Update: dnsdist-2.0.3-1.fc43
dnsdist is a highly DNS-, DoS- and abuse-aware loadbalancer. Its goal in life is to route traffic to the best server, delivering top performance to legitimate users while shunting or blocking abusive traffic...
Security update for dnsdist (low)
openSUSE security update: security update for dnsdist ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20461-1 Rating: low References: bsc1250054 bsc1253852 Cross-References: CVE-2025-30187 CVE-2025-8671 CVSS scores: CVE-2025-30187 SUSE : 3.7...