CVE-2018-1000003

Опубликовано: 22 янв. 2018

Источник: debian

Описание

Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
pdns-recursor	fixed	4.1.1-1		package
pdns-recursor	not-affected		stretch	package
pdns-recursor	not-affected		jessie	package
pdns-recursor	not-affected		wheezy	package

Примечания

https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2018-01.html

Связанные уязвимости

CVE-2018-1000003

CVSS3: 3.7

ubuntu

около 8 лет назад

Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.

CVE-2018-1000003

CVSS3: 3.7

nvd

около 8 лет назад

Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.

GHSA-vm3q-6vgq-8qhr

CVSS3: 3.7

github

больше 3 лет назад

Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.