CVE-2005-2302

2005-07-1904:00:00

Debian Security Bug Tracker

security-tracker.debian.org

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.001

Percentile

21.0%

JSON

PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a “blank out” of answers to those clients that are allowed to use recursion.

OSVersionArchitecturePackageVersionFilename
Debian12allpdns< 2.9.18-1pdns_2.9.18-1_all.deb
Debian11allpdns< 2.9.18-1pdns_2.9.18-1_all.deb
Debian999allpdns< 2.9.18-1pdns_2.9.18-1_all.deb
Debian13allpdns< 2.9.18-1pdns_2.9.18-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	pdns	< 2.9.18-1	pdns_2.9.18-1_all.deb
Debian	11	all	pdns	< 2.9.18-1	pdns_2.9.18-1_all.deb
Debian	999	all	pdns	< 2.9.18-1	pdns_2.9.18-1_all.deb
Debian	13	all	pdns	< 2.9.18-1	pdns_2.9.18-1_all.deb