Описание
An issue has been found in the DNSSEC parsing code of PowerDNS Recursor from 4.0.0 up to and including 4.0.6 leading to a memory leak when parsing specially crafted DNSSEC ECDSA keys. These keys are only parsed when validation is enabled by setting dnssec to a value other than off or process-no-validate (default).
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 4.1.1-2 |
| cosmic | not-affected | 4.1.1-2 |
| devel | not-affected | 4.1.1-2 |
| disco | not-affected | 4.1.1-2 |
| eoan | not-affected | 4.1.1-2 |
| esm-apps/bionic | not-affected | 4.1.1-2 |
| esm-apps/focal | not-affected | 4.1.1-2 |
| esm-apps/jammy | not-affected | 4.1.1-2 |
| esm-apps/noble | not-affected | 4.1.1-2 |
Показывать по
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3
Связанные уязвимости
An issue has been found in the DNSSEC parsing code of PowerDNS Recursor from 4.0.0 up to and including 4.0.6 leading to a memory leak when parsing specially crafted DNSSEC ECDSA keys. These keys are only parsed when validation is enabled by setting dnssec to a value other than off or process-no-validate (default).
An issue has been found in the DNSSEC parsing code of PowerDNS Recurso ...
An issue has been found in the DNSSEC parsing code of PowerDNS Recursor from 4.0.0 up to and including 4.0.6 leading to a memory leak when parsing specially crafted DNSSEC ECDSA keys. These keys are only parsed when validation is enabled by setting dnssec to a value other than off or process-no-validate (default).
EPSS
4.3 Medium
CVSS2
5.9 Medium
CVSS3