Описание
Security update for pdns
This update for pdns fixes the following issues:
- Build with libmaxminddb instead of the obsolete GeoIP (boo#1156196)
- CVE-2020-17482: Fixed an error that can result in leaking of uninitialised memory through crafted zone records (boo#1176535)
- Backported compilation fix vs. latest Boost 1.74 (boo#1176312)
Список пакетов
SUSE Package Hub 12 SP1
pdns-4.3.1-bp152.2.5.1
pdns-backend-geoip-4.3.1-bp152.2.5.1
pdns-backend-godbc-4.3.1-bp152.2.5.1
pdns-backend-ldap-4.3.1-bp152.2.5.1
pdns-backend-lua-4.3.1-bp152.2.5.1
pdns-backend-mydns-4.1.8-bp151.3.9.2
pdns-backend-mysql-4.3.1-bp152.2.5.1
pdns-backend-postgresql-4.3.1-bp152.2.5.1
pdns-backend-remote-4.3.1-bp152.2.5.1
pdns-backend-sqlite3-4.3.1-bp152.2.5.1
SUSE Package Hub 15 SP1
pdns-4.3.1-bp152.2.5.1
pdns-backend-geoip-4.3.1-bp152.2.5.1
pdns-backend-godbc-4.3.1-bp152.2.5.1
pdns-backend-ldap-4.3.1-bp152.2.5.1
pdns-backend-lua-4.3.1-bp152.2.5.1
pdns-backend-mydns-4.1.8-bp151.3.9.2
pdns-backend-mysql-4.3.1-bp152.2.5.1
pdns-backend-postgresql-4.3.1-bp152.2.5.1
pdns-backend-remote-4.3.1-bp152.2.5.1
pdns-backend-sqlite3-4.3.1-bp152.2.5.1
SUSE Package Hub 15 SP2
pdns-4.3.1-bp152.2.5.1
pdns-backend-geoip-4.3.1-bp152.2.5.1
pdns-backend-godbc-4.3.1-bp152.2.5.1
pdns-backend-ldap-4.3.1-bp152.2.5.1
pdns-backend-lua-4.3.1-bp152.2.5.1
pdns-backend-mydns-4.1.8-bp151.3.9.2
pdns-backend-mysql-4.3.1-bp152.2.5.1
pdns-backend-postgresql-4.3.1-bp152.2.5.1
pdns-backend-remote-4.3.1-bp152.2.5.1
pdns-backend-sqlite3-4.3.1-bp152.2.5.1
openSUSE Leap 15.1
pdns-4.3.1-bp152.2.5.1
pdns-backend-geoip-4.3.1-bp152.2.5.1
pdns-backend-godbc-4.3.1-bp152.2.5.1
pdns-backend-ldap-4.3.1-bp152.2.5.1
pdns-backend-lua-4.3.1-bp152.2.5.1
pdns-backend-mydns-4.1.8-bp151.3.9.2
pdns-backend-mysql-4.3.1-bp152.2.5.1
pdns-backend-postgresql-4.3.1-bp152.2.5.1
pdns-backend-remote-4.3.1-bp152.2.5.1
pdns-backend-sqlite3-4.3.1-bp152.2.5.1
openSUSE Leap 15.2
pdns-4.3.1-bp152.2.5.1
pdns-backend-geoip-4.3.1-bp152.2.5.1
pdns-backend-godbc-4.3.1-bp152.2.5.1
pdns-backend-ldap-4.3.1-bp152.2.5.1
pdns-backend-lua-4.3.1-bp152.2.5.1
pdns-backend-mydns-4.1.8-bp151.3.9.2
pdns-backend-mysql-4.3.1-bp152.2.5.1
pdns-backend-postgresql-4.3.1-bp152.2.5.1
pdns-backend-remote-4.3.1-bp152.2.5.1
pdns-backend-sqlite3-4.3.1-bp152.2.5.1
Ссылки
- E-Mail link for openSUSE-SU-2020:1556-1
- SUSE Security Ratings
- SUSE Bug 1156196
- SUSE Bug 1176312
- SUSE Bug 1176535
- SUSE CVE CVE-2020-17482 page
Описание
An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records into a zone might be able to leak the content of uninitialized memory.
Затронутые продукты
SUSE Package Hub 12 SP1:pdns-4.3.1-bp152.2.5.1
SUSE Package Hub 12 SP1:pdns-backend-geoip-4.3.1-bp152.2.5.1
SUSE Package Hub 12 SP1:pdns-backend-godbc-4.3.1-bp152.2.5.1
SUSE Package Hub 12 SP1:pdns-backend-ldap-4.3.1-bp152.2.5.1
Ссылки
- CVE-2020-17482
- SUSE Bug 1176535