11 matches found
K16866: PowerDNS vulnerabilities CVE-2014-8601 and CVE-2015-1868
Security Advisory Description CVE-2014-8601 PowerDNS Recursor before 3.6.2 does not limit delegation chaining, which allows remote attackers to cause a denial of service "performance degradations" via a large or infinite number of referrals, as demonstrated by resolving domains hosted by ezdns.it...
Mageia: Security Advisory (MGASA-2014-0522)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PowerDNS Security Advisory 2014-02: PowerDNS Recursor 3.6.1 and earlier can be made to provide bad service
PowerDNS Recursor before 3.6.2 does not limit delegation chaining, which allows remote attackers to cause a denial of service SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
openSUSE Security Update : pdns-recursor (openSUSE-SU-2014:1685-1)
This pdns-recursor version update fixes the following security issue and non secuirty issues. Update to upstream release 3.6.2. - boo906583: Degraded service through queries to queries to specific domains CVE-2014-8601 - Fixed broken localstatedir Update to upstream release 3.6.1. - gab14b4f:...
Debian DSA-3096-1 : pdns-recursor - security update
Florian Maury from ANSSI discovered a flaw in pdns-recursor, a recursive DNS server : a remote attacker controlling maliciously-constructed zones or a rogue server could affect the performance of pdns-recursor, thus leading to resource exhaustion and a potential denial-of-service. %NASLMINLEVEL...
[SECURITY] [DLA 104-1] pdns-recursor security update
Package : pdns-recursor Version : 3.2-4+deb6u1 CVE ID : CVE-2014-8601 Florian Maury from ANSSI discovered a flaw in pdns-recursor, a recursive DNS server : a remote attacker controlling maliciously-constructed zones or a rogue server could affect the performance of pdns-recursor, thus leading to...
[SECURITY] [DSA 3096-1] pdns-recursor security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3096-1 [email protected] http://www.debian.org/security/ Sebastien Delafond December 11, 2014 http://www.debian.org/security/faq -...
[oss-security] PowerDNS Security Advisory 2014-02
Hi everybody, Please be aware of PowerDNS Security Advisory 2014-02 http://doc.powerdns.com/md/security/powerdns-advisory-2014-02/, which you can also find below. The good news is that the currently released version of the PowerDNS Recursor is safe. The bad news is that users of older versions wi...
Updated pdns-recursor packages fix CVE-2014-8601
Updated pdns-recursor package fixes security vulnerability: PowerDNS Recursor before version 3.6.2, could be negatively impacted by specially configured, hard to resolve domain names. A remote attacker, by sending a query for such a domain name, could cause severe performance degradation in...
MGASA-2014-0522 Updated pdns-recursor packages fix CVE-2014-8601
Updated pdns-recursor package fixes security vulnerability: PowerDNS Recursor before version 3.6.2, could be negatively impacted by specially configured, hard to resolve domain names. A remote attacker, by sending a query for such a domain name, could cause severe performance degradation in...
CVE-2014-8601
CVE-2014-8601 affects PowerDNS Recursor before 3.6.2, where it fails to limit delegation chaining, allowing a remote attacker to cause a denial-of-service (performance degradations) via a large or infinite number of referrals (as demonstrated by ezdns.it). The issue is addressed in PowerDNS Recur...