AVG-148 log
| Package | powerdns-recursor |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 4.0.3-7 |
| Fixed | 4.0.4-1 |
| Current | 5.0.4-1 [extra] |
| Ticket | None |
| Created | Wed Jan 18 16:23:24 2017 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2016-7074 | Medium | Yes | Insufficient validation | An issue has been found in PowerDNS Authoritative Server and PowerDNS Recursor allowing an attacker in position of man-in-the-middle to alter the content of... |
| CVE-2016-7073 | Medium | Yes | Insufficient validation | An issue has been found in PowerDNS Authoritative Server and PowerDNS Recursor allowing an attacker in position of man-in-the-middle to alter the content of... |
| CVE-2016-7068 | Medium | Yes | Denial of service | An issue has been found in PowerDNS allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 19 Jan 2017 | ASA-201701-30 | powerdns-recursor | multiple issues |
| References |
|---|
http://seclists.org/oss-sec/2017/q1/97 https://doc.powerdns.com/md/security/powerdns-advisory-2016-02/ https://doc.powerdns.com/md/security/powerdns-advisory-2016-04/ |