CVE-2018-1046 log

Severity High
Remote No
Type Arbitrary code execution
An issue has been found in the dnsreplay tool provided with PowerDNS Authoritative, where replaying a specially crafted PCAP file can trigger a stack based buffer overflow, leading to a crash and potentially arbitrary code execution. This buffer overflow only occurs when the --ecs-stamp option of dnsreplay is used. Regardless of this issue, the use of dnsreplay with untrusted PCAP files is not advised.
Group Package Affected Fixed Severity Status Ticket
AVG-686 powerdns 4.1.1-2 4.1.2-1 High Fixed
Date Advisory Group Package Severity Type
09 May 2018 ASA-201805-1 AVG-686 powerdns High arbitrary code execution