Debian alert DSA-6233-1 (pdns)
| From: | Moritz Muehlenhoff <jmm@debian.org> | |
| To: | debian-security-announce@lists.debian.org | |
| Subject: | [SECURITY] [DSA 6233-1] pdns security update | |
| Date: | Tue, 28 Apr 2026 19:02:48 +0000 | |
| Message-ID: | <afEEWERh5r7Jksy-@seger.debian.org> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6233-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff April 28, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : pdns CVE ID : CVE-2026-33257 CVE-2026-33260 CVE-2026-33608 CVE-2026-33609 CVE-2026-33610 CVE-2026-33611 Multiple security vulnerabilities were discovered in the dnsdist DNS loadbalancer, which could result in denial of service, information disclosure or ACL bypass. For the stable distribution (trixie), these problems have been fixed in version 4.9.14-0+deb13u1. We recommend that you upgrade your pdns packages. For the detailed security status of pdns please refer to its security tracker page at: https://security-tracker.debian.org/tracker/pdns Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmnxAasACgkQEMKTtsN8 Tja97g/7ByuwwDWfLCodSFRzPWnI/SXOQeVs2melxTYku66IoKEpO7SxcOaHyreL GTg0GGUWbveVaiANI5KrvONnzTh4/kuFAGJXdhRpSQtQqzIJJjRO4R6YNCSakLH6 p++PrncsbImf6uR24TzBfbT/9t/E4OIErqAgFV3t9aauIse0Nw/PFjywecNmBJpi PxTYUXVxwvQYJ3Yn9sdh1X3ivXAd6qBdSLkn6WEmieWVIwjIQOVYWOaCwQ1dHxd6 Zu0sY4Lx1hqOzrDaO247C4JH9osj3K8zlzZe9qeuV8gEsOJF2IuNLw1IEEs+GKWJ 54J02pu4Hc9ZBNPjVCy0HqlSivjPW4NVUKjrMrx0Xn/HW3RI/vfpCfMwhPTUBKgA 5dMvRGSZ9Dhp815JQSjBly96TXKAZ7YQCGfeymhtNedHw/ACt+XffPirYphWhCeX 3skXzHeTzv8j353zEtwbiC5Bv2/19Nu/fzWdYAjJfUzdwKLlGm+vgm1fMNUWDwpI PmQ6fvNK3S053RXKJxd2m6WW23xTz0SfPbsXZooJihK/oZ+c1yTCi4PDPF01enNe G+E2vpZOV/Iwl+xERP9yqLoWaKAKuq8vlBuBDGvEpY1zk1WttYxAyINQaJJzjGqn jVcL1dZVqzAnVP2UzFvrgHcFQKpyJkTJz7NPyFcV3dGRINKCz14= =G4qD -----END PGP SIGNATURE-----