pdns-recursor 3.5.3-1ubuntu0.1 source package in Ubuntu
Changelog
pdns-recursor (3.5.3-1ubuntu0.1) trusty-security; urgency=high
* SECURITY UPDATE:
* References
* CVE-2014-8601: PowerDNS Recursor before 3.6.2 does not limit delegation
chaining, which allows remote attackers to cause a denial of service
("performance degradations") via a large or infinite number of referrals,
as demonstrated by resolving domains hosted by ezdns.it.
- Added debian/patches/CVE-2014-8601.patch
* CVE-2015-1868: The label decompression functionality in PowerDNS Recursor
3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth)
Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote
attackers to cause a denial of service (CPU consumption or crash) via a
request with a name that refers to itself.
- Added debian/patches/CVE-2015-1868.patch
* CVE-2015-5470: The label decompression functionality in PowerDNS Recursor
before 3.6.4 and 3.7.x before 3.7.3 and Authoritative (Auth) Server before
3.3.3 and 3.4.x before 3.4.5 allows remote attackers to cause a denial of
service (CPU consumption or crash) via a request with a long name that
refers to itself. NOTE: this vulnerability exists because of an incomplete
fix for CVE-2015-1868.
- Added debian/patches/CVE-2015-1868-2.patch
* CVE-2016-7068: Florian Heinz and Martin Kluge reported that pdns-recursor
parses all records present in a query regardless of whether they are
needed or even legitimate, allowing a remote, unauthenticated attacker to
cause an abnormal CPU usage load on the pdns server, resulting in a
partial denial of service if the system becomes overloaded.
- Added debian/patches/CVE-2016-7068.patch
* Add debian/patches/qtypes.patch so qtypes required for CVE-2016-7068.patch
are available
-- Scott Kitterman <email address hidden> Fri, 13 Jan 2017 15:20:50 -0500
Upload details
- Uploaded by:
- Scott Kitterman
- Sponsored by:
- Emily Ratliff
- Uploaded to:
- Trusty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Trusty | updates | universe | net | |
| Trusty | security | universe | net |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| pdns-recursor_3.5.3.orig.tar.bz2 | 172.2 KiB | 192c0b47a1cfcdccaa88d70fd33766a4c381f4223f966416f15e169df5d58eaa |
| pdns-recursor_3.5.3-1ubuntu0.1.debian.tar.gz | 14.8 KiB | 561058890bc9c9814a90cd9721f9b05e926ba3c1d775658884040e81d7f2bc89 |
| pdns-recursor_3.5.3-1ubuntu0.1.dsc | 2.2 KiB | cbc4c8a245b7737c0c60d9647e54d34097eb3881f3afc59575192cadfa08877d |
Available diffs
Binary packages built by this source
- pdns-recursor: PowerDNS recursor
PowerDNS is a versatile nameserver which supports a large number
of different backends ranging from simple zonefiles to relational
databases and load balancing/failover algorithms.
PowerDNS tries to emphasize speed and security.
.
This is the recursive nameserver that goes out to the internet and
resolve queries about other domains.
- pdns-recursor-dbg: debugging symbols for PowerDNS recursor
PowerDNS is a versatile nameserver which supports a large number
of different backends ranging from simple zonefiles to relational
databases and load balancing/failover algorithms.
PowerDNS tries to emphasize speed and security.
.
This package contains debugging symbols for PowerDNS to assist in
debugging, such as with gdb. It is not required for normal operation.
- pdns-recursor-dbgsym: debug symbols for package pdns-recursor
PowerDNS is a versatile nameserver which supports a large number
of different backends ranging from simple zonefiles to relational
databases and load balancing/failover algorithms.
PowerDNS tries to emphasize speed and security.
.
This is the recursive nameserver that goes out to the internet and
resolve queries about other domains.
