Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 28: 2018-2ff7cdbb7b Moderate Vulnerability in PowerDNS Memory Leak

fedora
Calendar Grey November 16, 2018
Dist Fedora Esm H88
An update to Fedora addressing PowerDNS has resolved memory leak problems and improved packet caching functionality. Details regarding security advisories have been included.
- Update to 4.1.5 Release notes: /powerdns-authoritative-server-4-0-6-4-1-5-and-recursor-4-0-9-4-1-5-released/ PowerDNS Security Advisory 2018-03 (https://doc.powerdns.com/authori...

Summary

The PowerDNS Nameserver is a modern, advanced and high performance

authoritative-only nameserver. It is written from scratch and conforms

to all relevant DNS standards documents.

Furthermore, PowerDNS interfaces with almost any database.

- Update to 4.1.5 Release notes: /powerdns-authoritative-server-4-0-6-4-1-5-and-recursor-4-0-9-4-1-5-released/

PowerDNS Security Advisory 2018-03 (https://doc.powerdns.com/authoritative/index.html

/security-advisories/powerdns-advisory-2018-03.html) (CVE-2018-10851) PowerDNS

Security Advisory 2018-05 () (CVE-2018-14626)

* Tue Nov 6 2018 Morten Stevens - 4.1.5-1

- Update to 4.1.5

- PowerDNS Security Advisory 2018-03 (CVE-2018-10851)

- PowerDNS Security Advisory 2018-05 (CVE-2018-14626)

* Wed Sep 19 2018 Morten Stevens - 4.1.4-1

- Update to 4.1.4

* Fri Jul 13 2018 Fedora Release Engineering - 4.1.3-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

* Fri May 25 2018 Morten Stevens - 4.1.3-1

- Update to 4.1.3

* Wed May 16 2018 Morten Stevens - 4.1.2-1

- Update to 4.1.2

* Mon Mar 19 2018 Iryna Shcherbina - 4.1.1-3

- Update Python 2 dependency declarations to new packaging standards

[ 1 ] Bug #1649028 - CVE-2018-14626 pdns: Packet cache pollution via crafted query

https://bugzilla.redhat.com/show_bug.cgi?id=1649028

[ 2 ] Bug #1588185 - CVE-2018-10851 pdns: Memory leak while parsing malformed records

https://bugzilla.redhat.com/show_bug.cgi?id=1588185

su -c 'dnf upgrade --advisory FEDORA-2018-2ff7cdbb7b' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory Fedora memory leak PowerDNS packet pollution

Change Log

References

Update Instructions

Severity
important
Lowest
Low
Medium
High
Critical

Product: Fedora 28
Version: 4.1.5
Release: 1.fc28
URL: https://www.powerdns.com/
Summary: A modern, advanced and high performance authoritative-only nameserver

Topics%20covered

Topics Covered

security advisory Fedora memory leak PowerDNS packet pollution

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here