2 matches found
Updated pdns packages fix security vulnerability
PowerDNS Authoritative Server accepts queries with a qname's length larger than 255 bytes CVE-2016-5426. PowerDNS Authoritative Server does not properly handle dot inside labels CVE-2016-5427. These issues allow a remote, unauthenticated attacker to cause an abnormal load on the PowerDNS backend ...
Code injection
PowerDNS aka pdns Authoritative Server before 4.0.1 allows remote primary DNS servers to cause a denial of service memory exhaustion and secondary DNS server crash via a large 1 AXFR or 2 IXFR response...