CVE-2020-14196

Опубликовано: 01 июл. 2020

Источник: debian

Описание

In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
pdns-recursor	fixed	4.3.2-1		package
pdns-recursor	postponed		buster	package

Примечания

https://www.openwall.com/lists/oss-security/2020/07/01/1
https://github.com/PowerDNS/pdns/pull/9283/commits/e81271189216dbf2850c6d4461dfc3f37c731ac8 (rec-4.1.17)

Связанные уязвимости

CVE-2020-14196

CVSS3: 5.3

ubuntu

больше 5 лет назад

In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.

CVE-2020-14196

CVSS3: 5.3

nvd

больше 5 лет назад

In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.

openSUSE-SU-2020:1005-1

suse-cvrf

больше 5 лет назад

Security update for pdns-recursor

GHSA-fqf5-f2p3-h3j2

github

больше 3 лет назад

In PowerDNS Recursor versions up to and including 4.3.1, 4.2.2 and 4.1.16, the ACL restricting access to the internal web server is not properly enforced.

openSUSE-SU-2020:1687-1

suse-cvrf

больше 5 лет назад

Security update for pdns-recursor