CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

Design/Logic Flaw

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

UBUNTU-CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

Denial Of Service (DoS)

pdns-recursor is vulnerable to Denial of ServiceDoS attacks. A remote attacker is able to cause infinite recursion in PowerDNS Recursor via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode...

CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

CVE-2023-22617

The CVE-2023-22617 issue affects PowerDNS Recursor 4.8.0, where a remote attacker could trigger infinite recursion by processing a DNS query for DS records in a misconfigured domain, due to QName minimization in QM fallback mode. The vulnerability is mitigated by upgrading to PowerDNS Recursor 4....

CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

PowerDNS Recursor 安全漏洞

PowerDNS Recursor pdnsrecursor is a domain name resolution server from the Dutch company PowerDNS. A security vulnerability exists in PowerDNS Recursor version 4.8.0, which stems from the use of QName minimization in QM fallback mode, resulting in infinite recursion...

CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

CVE-2023-22617

A remote attacker might be able to cause infinite recursion in PowerDNS Recursor 4.8.0 via a DNS query that retrieves DS records for a misconfigured domain, because QName minimization is used in QM fallback mode. This is fixed in 4.8.1...

openSUSE 15 Security Update : pdns-recursor (openSUSE-SU-2022:10171-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2022:10171-1 advisory. - PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has Improper Cleanup upon a Thrown Exception,...

OPENSUSE-SU-2022:10171-1 Security update for pdns-recursor

This update for pdns-recursor fixes the following issues: pdns-recursor was updated to 4.6.3: fixes incomplete exception handling related to protobuf message generation boo1202664, CVE-2022-37428 pdns-recursor was updated to 4.6.2: Reject non-apex NSEC3s that have both the NS and SOA bits set A...

Security update for pdns-recursor (important)

openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2022:10171-1 Rating: important References: 1202664 Cross-References: CVE-2022-37428 CVSS scores: CVE-2022-37428 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-37428 SUSE: 6.5...

FreeBSD : powerdns-recursor -- denial of service (5418b360-29cc-11ed-a6d4-6805ca2fa271)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 5418b360-29cc-11ed-a6d4-6805ca2fa271 advisory. - PowerDNS Recursor up to and including 4.5.9, 4.6.2 and 4.7.1, when protobuf logging is enabled, has...

Fedora: Security Advisory for pdns-recursor (FEDORA-2022-d1dcd9b046)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: pdns-recursor-4.6.3-1.fc36

PowerDNS Recursor is a non authoritative/recursing DNS server. Use this package if you need a dns cache for your network...

Denial Of Service (DoS)

pdns-recursor is vulnerable to denial of service. The vulnerability exists due to an Improper Cleanup upon a Thrown Exception when protobuf logging is enabled leading to a daemon crash...

Vulnerability fixed in PowerDNS recursor

PowerDNS has fixed a vulnerability in PowerDNS recursor. A remote malicious party could potentially exploit the vulnerability to cause a denial-of-service. To exploit the vulnerability, the malicious party must use use an IP address allowed by the Access Control List and the vulnerable environmen...