FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dnsdist -- multiple vulnerabilities

Affected packages
dnsdist < 1.2.0

Details

VuXML ID 198d82f3-8777-11e7-950a-e8e0b747a45a
Discovery 2017-08-21
Entry 2017-08-22

PowerDNS Security Advisory reports:

The first issue can lead to a denial of service on 32-bit if a backend sends crafted answers, and the second to an alteration of dnsdist's ACL if the API is enabled, writable and an authenticated user is tricked into visiting a crafted website.

[source]

References

CVE Name CVE-2016-7069
CVE Name CVE-2017-7557
URL https://dnsdist.org/security-advisories/index.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.