FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

powerdns-recursor -- cache pollution

Affected packages
powerdns_recursor < 5.3.0

Details

VuXML ID c4fb21e4-b579-11f0-871c-6805ca2fa271
Discovery 2025-10-15
Entry 2025-10-30

PowerDNS Team reports:

It has been brought to our attention that the Recursor does not apply strict enough validation of received delegation information. The malicious delegation information can be sent by an attacker spoofing packets.

[source]

References

CVE Name CVE-2025-59023
CVE Name CVE-2025-59024
URL https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-06.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.