FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

powerdns -- multiple vulnerabilities

Affected packages
powerdns < 3.4.11
4.0.0 <= powerdns < 4.0.2
powerdns-recursor < 3.7.4
4.0.0 <= powerdns-recursor < 4.0.4

Details

VuXML ID e3200958-dd6c-11e6-ae1b-002590263bf5
Discovery 2016-12-15
Entry 2017-01-18

PowerDNS reports:

2016-02: Crafted queries can cause abnormal CPU usage

2016-03: Denial of service via the web server

2016-04: Insufficient validation of TSIG signatures

2016-05: Crafted zone record can cause a denial of service

References

CVE Name CVE-2016-2120
CVE Name CVE-2016-7068
CVE Name CVE-2016-7072
CVE Name CVE-2016-7073
CVE Name CVE-2016-7074
FreeBSD PR ports/216135
FreeBSD PR ports/216136
URL https://blog.powerdns.com/2017/01/13/powerdns-authoritative-server-4-0-2-released/
URL https://blog.powerdns.com/2017/01/13/powerdns-recursor-4-0-4-released/
URL https://doc.powerdns.com/md/security/powerdns-advisory-2016-02/
URL https://doc.powerdns.com/md/security/powerdns-advisory-2016-03/
URL https://doc.powerdns.com/md/security/powerdns-advisory-2016-04/
URL https://doc.powerdns.com/md/security/powerdns-advisory-2016-05/