FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dnsdist -- multiple vulnerabilities

Affected packages
dnsdist < 1.2.0


VuXML ID 198d82f3-8777-11e7-950a-e8e0b747a45a
Discovery 2017-08-21
Entry 2017-08-22

PowerDNS Security Advisory reports:

The first issue can lead to a denial of service on 32-bit if a backend sends crafted answers, and the second to an alteration of dnsdist's ACL if the API is enabled, writable and an authenticated user is tricked into visiting a crafted website.


CVE Name CVE-2016-7069
CVE Name CVE-2017-7557