26 matches found
RLSA-2025:7094 Moderate: aardvark-dns security update
Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in src/backend/mod.rs. Security Fixes: containers/aardvark-dns: TCP Query Handling Flaw in Aardvark-dns Leading to Denial of Service CVE-2024-8418 For more details...
La MaraDNS
MaraDNS is a small open-source DNS server. It is an authoritative DNS server that handles recursion using the included "Deadwood" program. The MaraDNS repository contains various files, including a README, CHANGELOG, and Dockerfile, which provide information on how to compile and run MaraDNS, as...
[SECURITY] Fedora 39 Update: aardvark-dns-1.12.2-2.fc39
Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in src/backend/mod.rs...
[SECURITY] Fedora 41 Update: aardvark-dns-1.12.2-2.fc41
Authoritative DNS server for A/AAAA container records Forwards other request to configured resolvers. Read more about configuration in src/backend/mod.rs...
Over 1 Million Domains at Risk of 'Sitting Ducks' Domain Hijacking Technique
Over a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting Ducks attack. The powerful attack vector, which exploits weaknesses in the domain name system DNS, is being exploited by over a dozen Russian-nexus cybercriminal actors to stealthily...
aardvark-dns bug fix and enhancement update
An update is available for aardvark-dns. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The aardvark-dns package is and authoritative DNS server for A/AAAA...
Distinguishing Among DNS Services Part 3: Investment and Innovation
This is Part 3 of a 3-part blog series highlighting some of the distinguishing aspects of Akamai's authoritative DNS services, Edge DNS and Global Traffic Management. Part 1 focused on Akamai's DNS platform and what sets it apart. Part 2...
Akamai Drives New Standards and Enhances Authoritative DNS and Load Balancing Services
For more than 20 years, Akamai's customers have trusted our global edge platform to deliver their content, secure their web applications, and accelerate end-user experiences. As the basis for our mapping functions, Akamai DNS has always been essential to the reliability and performance of our...
Security Bulletin: Smart Cloud Entry is affected by ISC BIND vulnerabilities
Summary Multiple vulnerabilitieshave been identified in ISC BIND. ISC BIND shipped with IBM SmartCloud Entry Appliance. Vulnerability Details CVEID: CVE-2017-3142 DESCRIPTION: ISC BIND could allow a remote attacker to bypass security restrictions, caused by an error when an attacker can send and...
Open-Xchange: Recursor accepts unsigned, empty NXDOMAINs in secure zones
Hi! This is a slightly edited version of the email I sent to the project's security contacts on 2020-04-21. Open-Xchange confirmed it and asked me to resubmit it here. --- Subject: Recursor may be accepting unsigned, empty NXDOMAINs in secure zones I can easily reproduce this against Cloudflare's...
[SECURITY] Fedora 30 Update: nsd-4.2.2-1.fc30
NSD is a complete implementation of an authoritative DNS name server. For further information about what NSD is and what NSD is not please consult the REQUIREMENTS document which is a part of this distribution...
DNS Flag Day & Akamai
Written by Jon Reed & Barry Greene DNS Flag Day is an industry event that promotes the adoption of the most up-to-date DNS features and ensures that non-standards-compliant servers don't negatively impact the global performance of the Internet. The 2019 DNS Flag Day will remove a number of...
Design/Logic Flaw
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name for the zone and service being targeted may be able to manipulate BIND into accepting an unauthorized dynamic update. Affects BIND 9.4.0-9.8.8, 9.9.0-9.9.10-P1,...
[SECURITY] Fedora 26 Update: knot-2.6.1-1.fc26
Knot DNS is a high-performance authoritative DNS server implementation...
Recursive DNS - The Achilles Heel Of Advanced Threats
We all know what happens whenever anyone or anything tries to access a resource on the Internet. It all starts with a DNS request that translates a URL www.akamai.com into an IP address 104.97.77.24: Now if we dive a little deeper into the DNS request flow we can see the requester make a request ...
[SECURITY] Fedora 24 Update: nsd-4.1.13-1.fc24
NSD is a complete implementation of an authoritative DNS name server. For further information about what NSD is and what NSD is not please consult the REQUIREMENTS document which is a part of this distribution...
Debian: Security Advisory (DSA-3664-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Tunneling C&C Over DNS: dnscat2
This tool is designed to create a command-and-control C&C channel over the DNS protocol, which is an effective tunnel out of almost every network. dnscat2 comes in two parts: the client and the server. The client is designed to be run on a compromised machine. It’s written in C and has the minimu...
[SECURITY] Fedora 22 Update: knot-1.6.3-1.fc22
Knot DNS is a high-performance authoritative DNS server implementation...
MGASA-2015-0092 Updated maradns packages fix a security vulnerability
maradns versions prior to 1.4.16 are vulnerable to a DoS-vulnerability through which a malicious authorative DNS-server can cause an infinite chain of referrals. For further details on the vulnerability, see references...