244 matches found
PowerDNS DNSdist 安全漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that stems from the use of newDNSPacketOverlay to parse DNS packets, leading to out-of-bounds read operations...
PowerDNS DNSdist 安全漏洞
PowerDNS DNSdist is a proxy software provided by PowerDNS that offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a security vulnerability that arises from skipping ACL checks when the earlyacl Drop option is disabled. This vulnerability may cause all...
SUSE SLED15 / SLES15 Security Update : dnsdist (SUSE-SU-2026:0888-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0888-1 advisory. Update to dnsdist 1.9.11: - CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. -...
SUSE-SU-2026:0888-1 Security update for dnsdist
This update for dnsdist fixes the following issues: Update to dnsdist 1.9.11: - CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. - CVE-2025-30187: denial of service via crafted DoH exchange bsc1250054...
Security update for dnsdist
This update for dnsdist fixes the following issues: Update to dnsdist 1.9.11: CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. CVE-2025-30187: denial of service via crafted DoH exchange bsc1250054. Patch Instructions: To install this SUSE update use the SUSE recommend...
dnsdist-2.0.2-1.1 on GA media (moderate)
dnsdist-2.0.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10219-1 Rating: moderate Cross-References: CVE-2025-8671 CVSS scores: CVE-2025-8671 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-8671 SUSE : 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N...
OPENSUSE-SU-2026:10219-1 dnsdist-2.0.2-1.1 on GA media
These are all security issues fixed in the dnsdist-2.0.2-1.1 package on the GA media of openSUSE Tumbleweed...
Ubuntu: Security Advisory (USN-8037-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : DNSdist vulnerabilities (USN-8037-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8037-1 advisory. It was discovered that HTTP/2, which is used/vendored by DNSdist, did not properly account for resources when handling client-trigger...
[SECURITY] [DLA 4471-1] debian-security-support update
Debian LTS Advisory DLA-4471-1 [email protected] https://www.debian.org/lts/security/ Santiago Ruano Rincón February 06, 2026 https://wiki.debian.org/LTS Package : debian-security-support Version : 1:11+2026.02.06 Debian Bug : 1117607 1119290 1124248 debian-security-support, the Debian...
Debian dla-4471 : debian-security-support - security update
The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4471 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4471-1 [email protected] https://www.debian.org/lts/security/...
PT-2026-29241
Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker may be able to inject HTML content into the internal web dashboard by sending specially crafted DNS queries to a DNSdist instance. This is possible when domain-based dynamic rules...
PT-2026-29245
Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker may be able to cause DNSdist to allocate excessive memory when handling DNS over QUIC or DNS over HTTP/3 payloads, potentially leading to a denial of service. In some scenarios, t...
PT-2026-29247
Name of the Vulnerable Software and Affected Versions DNSdist affected versions not specified Description An attacker may be able to trigger a use-after-free condition by sending specially crafted DNS queries to DNSdist when using custom Lua code. This occurs through the DNSQuestion:getEDNSOption...
Fedora: Security Advisory (FEDORA-2025-5cef5ecca3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EUVD-2016-7949
Malware in sbrugna...
EUVD-2017-16564
Malware in sbrugna...
EUVD-2018-6558
Malware in sbrugna...
EUVD-2025-14811
Malicious code in bioql PyPI...
Fedora: Security Advisory (FEDORA-2025-0f0623b719)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...