CVE-2020-25829

An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This result...

Input validation

An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This result...

UBUNTU-CVE-2020-25829

An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This result...

CVE-2020-25829

An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This result...

CVE-2020-25829

An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This result...

CVE-2020-25829

PowerDNS Recursor (cve-2020-25829) affects versions prior to 4.1.18, 4.2.x prior to 4.2.5, and 4.3.x prior to 4.3.5. A remote attacker can make cached records for a name transition to the Bogus DNSSEC validation state via a DNS ANY query, causing denial of service for installations that always va...

PT-2020-16230 · Powerdns +1 · Powerdns Recursor +1

Name of the Vulnerable Software and Affected Versions: PowerDNS Recursor versions 4.1.x through 4.1.17 PowerDNS Recursor versions 4.2.x through 4.2.4 PowerDNS Recursor versions 4.3.x through 4.3.4 Description: A remote attacker can cause the cached records for a given name to be updated to the...

powerdns-recursor -- cache pollution

PowerDNS Team reports: CVE-2020-25829: An issue has been found in PowerDNS Recursor where a remote attacker can cause the cached records for a given name to be updated to the ‘Bogus’ DNSSEC validation state, instead of their actual DNSSEC ‘Secure’ state, via a DNS ANY query. This results in a...

Fedora: Security Advisory for pdns-recursor (FEDORA-2020-1d812d5546)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 33 Update: pdns-recursor-4.3.4-1.fc33

PowerDNS Recursor is a non authoritative/recursing DNS server. Use this package if you need a dns cache for your network...

Security update for pdns-recursor (moderate)

openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2020:1101-1 Rating: moderate References: 1173302 Cross-References: CVE-2020-14196 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes one vulnerability is now available. Description:This...

Security update for pdns-recursor (moderate)

openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2020:1055-1 Rating: moderate References: 1173302 Cross-References: CVE-2020-14196 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes one vulnerability is now available. Description:This...

The vulnerability of the `SyncRes::processAnswer` function in the recursive DNS server PowerDNS Recursor allows a attacker to access confidential data.

The vulnerability of the SyncRes::processAnswer function in the recursive DNS server PowerDNS Recursor is related to the lack of a mechanism for verifying the correctness of input data. Exploiting this vulnerability could allow an attacker operating remotely to gain access to confidential data...

Validation Bypass

PowerDNS Recursor is vulnerable validation bypass. The answer section of a NXDOMAIN response lacking an SOA is not properly validated in SyncRes::processAnswer, allowing an attacker to bypass DNSSEC validation...

Wrong DNS Zone Caching

PowerDNS Recursor is susceptible to wrong DNS zone caching. A remote attacker sending a DNS query for a meta-type like OPT can lead to a zone being wrongly cached as failing DNSSEC validation. It only arises if the parent zone is signed, and all the authoritative servers for that parent zone answ...

Amplification Attacks

PowerDNS Recursor is vulnerable toamplification attacks. It does not sufficiently defend against amplification attacks. An issue in the DNS protocol has been found that allow malicious parties to use recursive DNS services to attack third party authoritative name servers. The attack uses a crafte...

Privilege Escalation

pdns-recursor is vulnerable to privilege escalation. The vulnerability exists as pdns-recursor does not properly restrict ACL access to the internal web server...

OPENSUSE-SU-2020:1101-1 Security update for pdns-recursor

This update for pdns-recursor fixes the following issues: - CVE-2020-14196: Fixed an access restriction bypass with API key and password authentication boo1173302. This update was imported from the openSUSE:Leap:15.2:Update update project...

OPENSUSE-SU-2020:1055-1 Security update for pdns-recursor

This update for pdns-recursor fixes the following issues: - CVE-2020-14196: Fixed an access restriction bypass with API key and password authentication boo1173302. This update was imported from the openSUSE:Leap:15.1:Update update project...

openSUSE: Security Advisory for pdns-recursor (openSUSE-SU-2020:1005-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...