|
|
Subscribe / Log in / New account

pdns: denial of service

Package(s):pdns CVE #(s):CVE-2016-5426 CVE-2016-5427
Created:September 12, 2016 Updated:October 3, 2016
Description: From the Debian advisory:

CVE-2016-5426 / CVE-2016-5427: Florian Heinz and Martin Kluge reported that the PowerDNS Authoritative Server accepts queries with a qname's length larger than 255 bytes and does not properly handle dot inside labels. A remote, unauthenticated attacker can take advantage of these flaws to cause abnormal load on the PowerDNS backend by sending specially crafted DNS queries, potentially leading to a denial of service.

Alerts:
Fedora FEDORA-2016-efffcc7aec pdns 2016-10-01
Mageia MGASA-2016-0324 pdns 2016-09-28
openSUSE openSUSE-SU-2016:2354-1 pdns 2016-09-23
Debian-LTS DLA-627-1 pdns 2016-09-18
Arch Linux ASA-201609-9 powerdns 2016-09-13
Debian DSA-3664-1 pdns 2016-09-10
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds