pdns-4.0.1-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:10136 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z pdns-4.0.1-1.2 on GA media These are all security issues fixed in the pdns-4.0.1-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-10136 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:10136 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2012-0206/ SUSE CVE CVE-2012-0206 page https://www.suse.com/security/cve/CVE-2015-1868/ SUSE CVE CVE-2015-1868 page https://www.suse.com/security/cve/CVE-2015-5230/ SUSE CVE CVE-2015-5230 page https://www.suse.com/security/cve/CVE-2016-6172/ SUSE CVE CVE-2016-6172 page openSUSE Tumbleweed pdns-4.0.1-1.2 pdns-backend-geoip-4.0.1-1.2 pdns-backend-godbc-4.0.1-1.2 pdns-backend-ldap-4.0.1-1.2 pdns-backend-lua-4.0.1-1.2 pdns-backend-mydns-4.0.1-1.2 pdns-backend-mysql-4.0.1-1.2 pdns-backend-postgresql-4.0.1-1.2 pdns-backend-remote-4.0.1-1.2 pdns-backend-sqlite3-4.0.1-1.2 pdns-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-geoip-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-godbc-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-ldap-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-lua-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-mydns-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-mysql-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-postgresql-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-remote-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-sqlite3-4.0.1-1.2 as a component of openSUSE Tumbleweed common_startup.cc in PowerDNS (aka pdns) Authoritative Server before 2.9.22.5 and 3.x before 3.0.1 allows remote attackers to cause a denial of service (packet loop) via a crafted UDP DNS response. CVE-2012-0206 openSUSE Tumbleweed:pdns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-geoip-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-godbc-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-ldap-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-lua-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mydns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mysql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-postgresql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-remote-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-sqlite3-4.0.1-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2012-0206.html CVE-2012-0206 https://bugzilla.suse.com/740255 SUSE Bug 740255 The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself. CVE-2015-1868 openSUSE Tumbleweed:pdns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-geoip-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-godbc-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-ldap-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-lua-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mydns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mysql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-postgresql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-remote-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-sqlite3-4.0.1-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-1868.html CVE-2015-1868 https://bugzilla.suse.com/927569 SUSE Bug 927569 https://bugzilla.suse.com/943078 SUSE Bug 943078 The DNS packet parsing/generation code in PowerDNS (aka pdns) Authoritative Server 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via crafted query packets. CVE-2015-5230 openSUSE Tumbleweed:pdns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-geoip-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-godbc-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-ldap-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-lua-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mydns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mysql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-postgresql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-remote-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-sqlite3-4.0.1-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2015-5230.html CVE-2015-5230 https://bugzilla.suse.com/943078 SUSE Bug 943078 PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response. CVE-2016-6172 openSUSE Tumbleweed:pdns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-geoip-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-godbc-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-ldap-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-lua-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mydns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mysql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-postgresql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-remote-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-sqlite3-4.0.1-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2016-6172.html CVE-2016-6172 https://bugzilla.suse.com/987872 SUSE Bug 987872