Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Fedora 28: FEDORA-2019-b85d4171d4 Critical: PowerDNS DNS Threat Mitigation

fedora
Calendar Grey March 26, 2019
Dist Fedora Esm H88
Upgrading PowerDNS to version 4.1.7 on Fedora 28 addresses significant security vulnerabilities affecting DNS operations for authoritative name servers.
- Update to 4.1.7 Release notes: https://doc.powerdns.com/authoritative/changelog/4.1.html#change-4.1.7 Security Advisory: https://doc.powerdns.com/authoritative/security-advisorie...

Summary

The PowerDNS Nameserver is a modern, advanced and high performance

authoritative-only nameserver. It is written from scratch and conforms

to all relevant DNS standards documents.

Furthermore, PowerDNS interfaces with almost any database.

- Update to 4.1.7 Release notes:

https://doc.powerdns.com/authoritative/changelog/4.1.html#change-4.1.7 Security

Advisory: https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2019-03.html

* Tue Mar 19 2019 Morten Stevens - 4.1.7-1

- Update to 4.1.7

- PowerDNS Security Advisory 2019-03 (CVE-2019-3871)

* Sun Feb 3 2019 Morten Stevens - 4.1.6-1

- Update to 4.1.6

* Fri Feb 1 2019 Fedora Release Engineering - 4.1.5-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild

* Wed Jan 30 2019 Jonathan Wakely - 4.1.5-3

- Rebuilt for Boost 1.69

* Wed Nov 21 2018 Igor Gnatenko - 4.1.5-2

- Rebuild for protobuf 3.6

* Tue Nov 6 2018 Morten Stevens - 4.1.5-1

- Update to 4.1.5

- PowerDNS Security Advisory 2018-03 (CVE-2018-10851)

- PowerDNS Security Advisory 2018-05 (CVE-2018-14626)

* Wed Sep 19 2018 Morten Stevens - 4.1.4-1

- Update to 4.1.4

* Fri Jul 13 2018 Fedora Release Engineering - 4.1.3-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

* Fri May 25 2018 Morten Stevens - 4.1.3-1

- Update to 4.1.3

* Wed May 16 2018 Morten Stevens - 4.1.2-1

- Update to 4.1.2

* Mon Mar 19 2018 Iryna Shcherbina - 4.1.1-3

- Update Python 2 dependency declarations to new packaging standards

[ 1 ] Bug #1689013 - CVE-2019-3871 pdns: insufficient validation of data when building a HTTP request from a DNS query

https://bugzilla.redhat.com/show_bug.cgi?id=1689013

su -c 'dnf upgrade --advisory FEDORA-2019-b85d4171d4' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory fedora update critical threat mitigation dns powerdns

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 28
Version: 4.1.7
Release: 1.fc28
URL: https://www.powerdns.com/
Summary: A modern, advanced and high performance authoritative-only nameserver

Topics%20covered

Topics Covered

security advisory fedora update critical threat mitigation dns powerdns

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here