AVG-1163 log

Package	powerdns-recursor
Status	Fixed
Severity	Medium
Type	multiple issues
Affected	4.2.1-2
Fixed	4.2.2-1
Current	5.0.4-1 [extra]
Ticket	None
Created	Tue May 19 09:26:44 2020

Issue	Severity	Remote	Type	Description
CVE-2020-12244	Medium	Yes	Insufficient validation	An issue has been found in PowerDNS Recursor before 4.3.1 and 4.2.2 where records in the answer section of a NXDOMAIN response lacking an SOA were not...
CVE-2020-10995	Medium	Yes	Denial of service	An issue has been found in PowerDNS Recursor before 4.3.1 and 4.2.2. An issue in the DNS protocol has been found that allow malicious parties to use...

Issue

Severity

Remote

Type

Description

CVE-2020-12244

Medium

Yes

Insufficient validation

An issue has been found in PowerDNS Recursor before 4.3.1 and 4.2.2 where records in the answer section of a NXDOMAIN response lacking an SOA were not...

CVE-2020-10995

Medium

Yes

Denial of service

An issue has been found in PowerDNS Recursor before 4.3.1 and 4.2.2. An issue in the DNS protocol has been found that allow malicious parties to use...

Date	Advisory	Package	Type
19 May 2020	ASA-202005-10	powerdns-recursor	multiple issues

References
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-01.html https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-02.html https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-03.html

References

https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-01.html
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-02.html
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-03.html