powerdns

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Authoritative DNS server
Version 4.1.0-3 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-519 4.0.4-4 4.0.5-1 Low Fixed
AVG-147 4.0.1-7 4.0.2-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2017-15091 AVG-519 Low Yes Access restriction bypass
An issue has been found in the API component of PowerDNS Authoritative < 4.0.5, where some operations that have an impact on the state of the server are...
CVE-2016-7074 AVG-147 Medium Yes Insufficient validation
An issue has been found in PowerDNS Authoritative Server and PowerDNS Recursor allowing an attacker in position of man-in-the-middle to alter the content of...
CVE-2016-7073 AVG-147 Medium Yes Insufficient validation
An issue has been found in PowerDNS Authoritative Server and PowerDNS Recursor allowing an attacker in position of man-in-the-middle to alter the content of...
CVE-2016-7072 AVG-147 Medium Yes Denial of service
An issue has been found in PowerDNS Authoritative Server allowing a remote, unauthenticated attacker to cause a denial of service by opening a large number...
CVE-2016-7068 AVG-147 Medium Yes Denial of service
An issue has been found in PowerDNS allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending...
CVE-2016-2120 AVG-147 Medium Yes Denial of service
An issue has been found in PowerDNS Authoritative Server allowing an authorized user to crash the server by inserting a specially crafted record in a zone...

Advisories

Date Advisory Group Severity Description
27 Nov 2017 ASA-201711-30 AVG-519 Low access restriction bypass
19 Jan 2017 ASA-201701-29 AVG-147 Medium multiple issues