Описание
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.4.5-1 |
| esm-apps/xenial | not-affected | 3.4.5-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [3.3-2ubuntu0.1]] |
| lucid | ignored | end of life |
| precise | not-affected | 3.0-1.1ubuntu1 |
| trusty | released | 3.3-2ubuntu0.1 |
| trusty/esm | DNE | trusty was released [3.3-2ubuntu0.1] |
| upstream | released | 3.4.4 |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.7.3-1 |
| esm-apps/xenial | not-affected | 3.7.3-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [3.5.3-1ubuntu0.1]] |
| lucid | ignored | end of life |
| precise | not-affected | 3.3-2 |
| trusty | released | 3.5.3-1ubuntu0.1 |
| trusty/esm | DNE | trusty was released [3.5.3-1ubuntu0.1] |
| upstream | released | 3.6.3,3.7.2 |
| utopic | ignored | end of life |
| vivid | released | 3.6.2-2+deb8u2build0.15.04.1 |
Показывать по
EPSS
7.8 High
CVSS2
Связанные уязвимости
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6. ...
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.
EPSS
7.8 High
CVSS2