git: 9466b58e054b - main - security/vuxml: Add powerdns-recursor DOS
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Mon, 29 Apr 2024 06:50:15 UTC
The branch main has been updated by fernape: URL: https://cgit.FreeBSD.org/ports/commit/?id=9466b58e054bd1b86a4610a22cb7258f1567117c commit 9466b58e054bd1b86a4610a22cb7258f1567117c Author: Fernando Apesteguía <fernape@FreeBSD.org> AuthorDate: 2024-04-29 06:48:04 +0000 Commit: Fernando Apesteguía <fernape@FreeBSD.org> CommitDate: 2024-04-29 06:49:31 +0000 security/vuxml: Add powerdns-recursor DOS * CVE-2024-25583 A crafted response from an upstream server the recursor has been configured to forward-recurse to can cause a Denial of Service in the Recursor. The default configuration of the Recursor does not use recursive forwarding and is not affected. PR: 278564 --- security/vuxml/vuln/2024.xml | 27 +++++++++++++++++++++++++++ 1 file changed, 27 insertions(+) diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml index b09536e6f506..d25c4b90e530 100644 --- a/security/vuxml/vuln/2024.xml +++ b/security/vuxml/vuln/2024.xml @@ -687,6 +687,33 @@ </dates> </vuln> + <vuln vid="1af16f2b-023c-11ef-8791-6805ca2fa271"> + <topic>powerdns-recursor -- denial of service</topic> + <affects> + <package> + <name>powerdns-recursor</name> + <range><lt>5.0.4</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>PowerDNS Team reports:</p> + <blockquote cite="https://blog.powerdns.com/2024/04/24/powerdns-recursor-4-8-8-4-9-5-5-0-4-released"> + <p>PowerDNS Security Advisory 2024-02: if recursive forwarding is configured, + crafted responses can lead to a denial of service in Recursor</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2024-25583</cvename> + <url>https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-02.html</url> + </references> + <dates> + <discovery>2024-04-24</discovery> + <entry>2024-04-24</entry> + </dates> + </vuln> + <vuln vid="bb49f1fa-00da-11ef-92b7-589cfc023192"> <topic>GLPI -- multiple vulnerabilities</topic> <affects>