Lucene search
K

244 matches found

CNNVD
CNNVD
added 2026/03/31 12:0 a.m.14 views

PowerDNS DNSdist 安全漏洞

PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from the use of newDNSPacketOverlay to parse DNS packets, leading to out-of-bounds read operations...

8.2CVSS5.8AI score0.01028EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.7 views

PowerDNS DNSdist 安全漏洞

PowerDNS DNSdist is a proxy software provided by PowerDNS that offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that arises from skipping ACL checks when the earlyacl Drop option is disabled. This vulnerability may cause all...

6.5CVSS5.8AI score0.00148EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/14 12:0 a.m.3 views

SUSE SLED15 / SLES15 Security Update : dnsdist (SUSE-SU-2026:0888-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0888-1 advisory. Update to dnsdist 1.9.11: - CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. -...

7.5CVSS5.9AI score0.04604EPSS
Exploits3References8
OSV
OSV
added 2026/03/13 7:8 a.m.5 views

SUSE-SU-2026:0888-1 Security update for dnsdist

This update for dnsdist fixes the following issues: Update to dnsdist 1.9.11: - CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. - CVE-2025-30187: denial of service via crafted DoH exchange bsc1250054...

7.5CVSS5.8AI score0.04604EPSS
Exploits3References6
SUSE Linux
SUSE Linux
added 2026/03/13 7:8 a.m.3 views

Security update for dnsdist

This update for dnsdist fixes the following issues: Update to dnsdist 1.9.11: CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. CVE-2025-30187: denial of service via crafted DoH exchange bsc1250054. Patch Instructions: To install this SUSE update use the SUSE recommend...

8.7CVSS5.7AI score0.04604EPSS
Exploits3References10
OPENSUSE Linux
OPENSUSE Linux
added 2026/02/19 12:0 a.m.7 views

dnsdist-2.0.2-1.1 on GA media (moderate)

dnsdist-2.0.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10219-1 Rating: moderate Cross-References: CVE-2025-8671 CVSS scores: CVE-2025-8671 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-8671 SUSE : 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N...

8.7CVSS5.5AI score0.04604EPSS
Exploits3
OSV
OSV
added 2026/02/18 12:0 a.m.2 views

OPENSUSE-SU-2026:10219-1 dnsdist-2.0.2-1.1 on GA media

These are all security issues fixed in the dnsdist-2.0.2-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS5.8AI score0.04604EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2026/02/16 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-8037-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.5AI score0.04604EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/02/14 12:0 a.m.9 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : DNSdist vulnerabilities (USN-8037-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8037-1 advisory. It was discovered that HTTP/2, which is used/vendored by DNSdist, did not properly account for resources when handling client-trigger...

7.5CVSS8.5AI score0.04604EPSS
Exploits3References4
Debian
Debian
added 2026/02/06 9:24 p.m.7 views

[SECURITY] [DLA 4471-1] debian-security-support update

Debian LTS Advisory DLA-4471-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón February 06, 2026 https://wiki.debian.org/LTS Package : debian-security-support Version : 1:11+2026.02.06 Debian Bug : 1117607 1119290 1124248 debian-security-support, the Debian...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.4 views

Debian dla-4471 : debian-security-support - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4471 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4471-1 [email protected] https://www.debian.org/lts/security/...

5.5AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-29241

Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker may be able to inject HTML content into the internal web dashboard by sending specially crafted DNS queries to a DNSdist instance. This is possible when domain-based dynamic rules...

4.3CVSS5.8AI score0.00136EPSS
Exploits0References49
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.2 views

PT-2026-29245

Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker may be able to cause DNSdist to allocate excessive memory when handling DNS over QUIC or DNS over HTTP/3 payloads, potentially leading to a denial of service. In some scenarios, t...

7.5CVSS5.8AI score0.00537EPSS
Exploits0References51
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-29247

Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker may be able to trigger a use-after-free condition by sending specially crafted DNS queries to DNSdist when using custom Lua code. This occurs through the DNSQuestion:getEDNSOption...

7.5CVSS5.8AI score0.00489EPSS
Exploits0References49
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-5cef5ecca3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS6.8AI score0.00271EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-7949

Malware in sbrugna...

7.5CVSS7.1AI score0.0458EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-16564

Malware in sbrugna...

8.8CVSS8.6AI score0.00831EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-6558

Malware in sbrugna...

5.9CVSS6.1AI score0.02572EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-14811

Malicious code in bioql PyPI...

7.5CVSS8.1AI score0.02068EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/10/02 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2025-0f0623b719)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS6.8AI score0.00271EPSS
Exploits0References4
Rows per page
Query Builder