|
|
Log in / Subscribe / Register

powerdns: denial of service

Package(s):powerdns CVE #(s):CVE-2015-1868
Created:April 24, 2015 Updated:July 22, 2015
Description:

From the Arch Linux advisory:

A bug was discovered in our label decompression code, making it possible for names to refer to themselves, thus causing a loop during decompression. This loop is capped at a 1000 iterations by a failsafe, making the issue harmless on most platforms. However, on specific platforms, the recursion involved in these 1000 steps causes memory corruption leading to a quick crash, presumably because the default stack is too small.

Alerts:
Mageia MGASA-2015-0301 pdns 2015-08-03
openSUSE openSUSE-SU-2015:1278-1 pdns pdns-recursor 2015-07-22
Debian DSA-3307-1 pdns-recursor 2015-07-10
Debian DSA-3306-1 pdns 2015-07-10
Mageia MGASA-2015-0189 pdns, pdns-recursor 2015-05-05
Fedora FEDORA-2015-7079 pdns-recursor 2015-04-30
Fedora FEDORA-2015-7031 pdns-recursor 2015-04-30
Fedora FEDORA-2015-7057 pdns 2015-04-30
Fedora FEDORA-2015-7047 pdns 2015-04-30
Arch Linux ASA-201504-27 powerdns-recursor 2015-04-24
Arch Linux ASA-201504-26 powerdns 2015-04-24
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds