PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 and 4.0.9, are vulnerable to a memory leak while parsing malformed records that can lead to remote denial of service.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10851 | Issue Tracking Third Party Advisory |
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2018-03.html | Vendor Advisory |
https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2018-04.html | Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10851 | Issue Tracking Third Party Advisory |
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2018-03.html | Vendor Advisory |
https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2018-04.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:42
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 5.3 |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10851 - Issue Tracking, Third Party Advisory | |
References | () https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2018-03.html - Vendor Advisory | |
References | () https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2018-04.html - Vendor Advisory |
Information
Published : 2018-11-29 18:29
Updated : 2024-11-21 03:42
NVD link : CVE-2018-10851
Mitre link : CVE-2018-10851
CVE.ORG link : CVE-2018-10851
JSON object : View
Products Affected
powerdns
- recursor
- authoritative