AVG-148

Package powerdns-recursor
Status Fixed
Severity Medium
Type multiple issues
Affected 4.0.3-7
Fixed 4.0.4-1
Current 4.1.1-1 [community]
Ticket None
Created Wed Jan 18 16:23:24 2017
Issue Severity Remote Type Description
CVE-2016-7074 Medium Yes Insufficient validation
An issue has been found in PowerDNS Authoritative Server and PowerDNS Recursor allowing an attacker in position of man-in-the-middle to alter the content of...
CVE-2016-7073 Medium Yes Insufficient validation
An issue has been found in PowerDNS Authoritative Server and PowerDNS Recursor allowing an attacker in position of man-in-the-middle to alter the content of...
CVE-2016-7068 Medium Yes Denial of service
An issue has been found in PowerDNS allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending...
Date Advisory Package Description
19 Jan 2017 ASA-201701-30 powerdns-recursor multiple issues
References
http://seclists.org/oss-sec/2017/q1/97
https://doc.powerdns.com/md/security/powerdns-advisory-2016-02/
https://doc.powerdns.com/md/security/powerdns-advisory-2016-04/