Information on source package pdns

Available versions

ReleaseVersion
jessie3.4.1-4+deb8u8
jessie (security)3.4.1-4+deb8u10
stretch4.0.3-1+deb9u4
stretch (security)4.0.3-1+deb9u5
buster4.1.6-3
bullseye4.1.6-3
sid4.1.6-3

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2019-10203vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerablePowerDNS Security Advisory 2019-06: Denial of service via crafted zone records
CVE-2018-10851vulnerable (no DSA, ignored)fixedfixedfixedfixedPowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4. ...

Resolved issues

BugDescription
CVE-2019-3871A vulnerability was found in PowerDNS Authoritative Server before 4.0. ...
CVE-2019-10163A Vulnerability has been found in PowerDNS Authoritative Server before ...
CVE-2019-10162A vulnerability has been found in PowerDNS Authoritative Server before ...
CVE-2018-14626PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and PowerDNS ...
CVE-2018-1046pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsrep ...
CVE-2017-15091An issue has been found in the API component of PowerDNS Authoritative ...
CVE-2016-7074An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and Power ...
CVE-2016-7073An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and Power ...
CVE-2016-7072An issue has been found in PowerDNS Authoritative Server before 3.4.11 ...
CVE-2016-7068An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and Power ...
CVE-2016-6172PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote pr ...
CVE-2016-5427PowerDNS (aka pdns) Authoritative Server before 3.4.10 does not proper ...
CVE-2016-5426PowerDNS (aka pdns) Authoritative Server before 3.4.10 allows remote a ...
CVE-2016-2120An issue has been found in PowerDNS Authoritative Server versions up t ...
CVE-2015-5470The label decompression functionality in PowerDNS Recursor before 3.6. ...
CVE-2015-5311PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows rem ...
CVE-2015-5230
CVE-2015-1868The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6. ...
CVE-2014-7210pdns in Debian creates too privileged MySQL user
CVE-2012-0206common_startup.cc in PowerDNS (aka pdns) Authoritative Server before 2 ...
CVE-2008-5277PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of ...
CVE-2008-3337PowerDNS Authoritative Server before 2.9.21.1 drops malformed queries, ...
CVE-2006-4252PowerDNS Recursor 3.1.3 and earlier allows remote attackers to cause a ...
CVE-2006-4251Buffer overflow in PowerDNS Recursor 3.1.3 and earlier might allow rem ...
CVE-2005-2302PowerDNS before 2.9.18, when allowing recursion to a restricted range ...
CVE-2005-2301PowerDNS before 2.9.18, when running with an LDAP backend, does not pr ...
CVE-2005-0428The DNSPacket::expand method in dnspacket.cc in PowerDNS before 2.9.17 ...
CVE-2005-0038The DNS implementation of PowerDNS 2.9.16 and earlier allows remote at ...

Security announcements

DSA / DLADescription
DLA-1843-1pdns - security update
DSA-4470-1pdns - security update
DSA-4424-1pdns - security update
DLA-1737-1pdns - security update
DLA-798-1pdns - security update
DSA-3764-1pdns - security update
DLA-627-1pdns - security update
DSA-3664-1pdns - security update
DLA-492-1pdns - security update
DSA-3347-1pdns - security update
DSA-3306-1pdns - security update
DSA-2385-1pdns - packet loop
DSA-2385-1pdns - packet loop
DSA-1628-1pdns - DNS spoofing
DSA-1211pdns
DSA-771-1pdns - several

Search for package or bug name: Reporting problems