Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-3807

Опубликовано: 29 янв. 2019
Источник: debian

Описание

An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
pdns-recursorfixed4.1.9-1package
pdns-recursornot-affectedstretchpackage
pdns-recursornot-affectedjessiepackage

Примечания

  • https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2019-02.html

Связанные уязвимости

ubuntu логотип

CVE-2019-3807

CVSS3: 3.7
ubuntu
около 7 лет назад

An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.

nvd логотип

CVE-2019-3807

CVSS3: 3.7
nvd
около 7 лет назад

An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.

suse-cvrf логотип

openSUSE-SU-2019:0100-1

suse-cvrf
почти 7 лет назад

Security update for pdns-recursor

github логотип

GHSA-3h27-2wg2-w59m

CVSS3: 9.8
github
больше 3 лет назад

An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.