9 matches found
[SECURITY] [DLA 3855-1] pdns-recursor security update
Debian LTS Advisory DLA-3855-1 [email protected] https://www.debian.org/lts/security/ ; Daniel Leidert July 01, 2024 https://wiki.debian.org/LTS Package : pdns-recursor Version : 4.1.11-1+deb10u2 CVE...
Debian dla-3855 : pdns-recursor - security update
The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3855 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3855-1 [email protected]...
Mageia: Security Advisory (MGASA-2020-0393)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PowerDNS Recursor < 4.1.18, 4.2.0 < 4.2.4, 4.3.0 < 4.3.4 DoS Vulnerability
PowerDNS Recursor is prone to a denial of service vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
FreeBSD : powerdns-recursor -- cache pollution (a6860b11-0dee-11eb-94ff-6805ca2fa271)
PowerDNS Team reports : CVE-2020-25829: An issue has been found in PowerDNS Recursor where a remote attacker can cause the cached records for a given name to be updated to the 'Bogus' DNSSEC validation state, instead of their actual DNSSEC 'Secure' state, via a DNS ANY query. This results in a...
openSUSE Security Update : pdns-recursor (openSUSE-2020-1687)
This update for pdns-recursor fixes the following issues : -pdns-recursorwas updated to 4.1.1 and 4.3.5 : - CVE-2020-25829: Fixed a cache pollution related to DNSSEC validation boo1177383 - CVE-2020-14196: Fixed an access restriction bypass with API key and password authentication boo1173302. C...
[ASA-202010-6] powerdns-recursor: denial of service
Arch Linux Security Advisory ASA-202010-6 ========================================= Severity: High Date : 2020-10-18 CVE-ID : CVE-2020-25829 Package : powerdns-recursor Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-1243 Summary ======= The package powerdns-recurs...
CVE-2020-25829
PowerDNS Recursor (cve-2020-25829) affects versions prior to 4.1.18, 4.2.x prior to 4.2.5, and 4.3.x prior to 4.3.5. A remote attacker can make cached records for a name transition to the Bogus DNSSEC validation state via a DNS ANY query, causing denial of service for installations that always va...
powerdns-recursor -- cache pollution
PowerDNS Team reports: CVE-2020-25829: An issue has been found in PowerDNS Recursor where a remote attacker can cause the cached records for a given name to be updated to the ‘Bogus’ DNSSEC validation state, instead of their actual DNSSEC ‘Secure’ state, via a DNS ANY query. This results in a...