CVE-2020-25829 log
Source |
|
Severity | High |
Remote | Yes |
Type | Denial of service |
Description | An issue has been found in PowerDNS Recursor before 4.3.5 where a remote attacker can cause the cached records for a given name to be updated to the ‘Bogus’ DNSSEC validation state, instead of their actual DNSSEC ‘Secure’ state, via a DNS ANY query. This results in a denial of service for installations that always validate (dnssec=validate) and for clients requesting validation when on-demand validation is enabled (dnssec=process). |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1243 | powerdns-recursor | 4.3.4-1 | 4.3.5-1 | High | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
18 Oct 2020 | ASA-202010-6 | AVG-1243 | powerdns-recursor | High | denial of service |