Lucene search
PRIOn knowledge basePRION:CVE-2015-5470HistoryNov 02, 2015 - 7:59 p.m.
Design/Logic Flaw
2015-11-0219:59:00
PRIOn knowledge base
www.prio-n.com
3
The label decompression functionality in PowerDNS Recursor before 3.6.4 and 3.7.x before 3.7.3 and Authoritative (Auth) Server before 3.3.3 and 3.4.x before 3.4.5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a long name that refers to itself. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1868.
| CPE | Name | Operator | Version |
|---|---|---|---|
| authoritative | eq | 3.4.1 | |
| authoritative | le | 3.3.2 | |
| authoritative | eq | 3.4.2 | |
| authoritative | eq | 3.4.0 | |
| authoritative | eq | 3.4.3 | |
| authoritative | eq | 3.4.4 | |
| recursor | eq | 3.7.2 | |
| recursor | le | 3.6.3 | |
| recursor | eq | 3.7.1 |
Related
cve
cve
CVE-2015-5470
2015-11-02 19:59:09
CVE-2015-1868
2015-05-18 15:59:05
freebsd
freebsd
powerdns -- Label decompression bug can cause crashes or CPU spikes
2015-04-23 00:00:00
nessus
nessus
FreeBSD : powerdns -- Label decompression bug can cause crashes or CPU spikes (64e6006e-f009-11e4-98c6-000c292ee6b8)
2015-05-04 00:00:00
Debian DSA-3306-1 : pdns - security update
2015-07-13 00:00:00
openSUSE Security Update : pdns / pdns-recursor (openSUSE-2015-505)
2015-07-27 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0301)
2015-10-15 00:00:00
PowerDNS Authoritative (Auth) Server Denial of Service Vulnerability - Linux
2017-01-04 00:00:00
ubuntucve
ubuntucve
CVE-2015-5470
2015-11-02 00:00:00
CVE-2015-1868
2015-05-18 00:00:00
mageia
mageia
Updated pdns package fixes security vulnerability
2015-08-03 23:55:18
Updated pdns & pdns-recursor packages fix CVE-2015-1868
2015-05-05 16:36:50
osv
osv
pdns - security update
2015-07-09 00:00:00
pdns-recursor - security update
2015-07-09 00:00:00
debiancve
debiancve
CVE-2015-5470
2015-11-02 19:59:09
CVE-2015-1868
2015-05-18 15:59:05
cvelist
cvelist
CVE-2015-5470
2015-11-02 19:00:00
CVE-2015-1868
2015-05-18 15:00:00
nvd
nvd
CVE-2015-5470
2015-11-02 19:59:09
CVE-2015-1868
2015-05-18 15:59:05
archlinux
archlinux
powerdns: denial of service
2015-04-24 00:00:00
powerdns-recursor: denial of service
2015-04-24 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: pdns-recursor-3.7.2-1.fc22
2015-04-30 11:40:20
[SECURITY] Fedora 21 Update: pdns-3.4.4-1.fc21
2015-04-30 11:43:41
[SECURITY] Fedora 22 Update: pdns-3.4.4-1.fc22
2015-04-30 11:48:21
debian
debian
[SECURITY] [DSA 3307-1] pdns-recursor security update
2015-07-09 22:10:50
[SECURITY] [DSA 3306-1] pdns security update
2015-07-09 22:10:23
securityvulns
securityvulns
[SECURITY] [DSA 3306-1] pdns security update
2015-07-13 00:00:00
pdns recursor DoS
2015-07-13 00:00:00
prion
prion
Design/Logic Flaw
2015-05-18 15:59:00
checkpoint_advisories
checkpoint_advisories
PowerDNS Nameserver Label Decompression Denial of Service (CVE-2015-1868)
2015-06-04 00:00:00
f5
f5
SOL16866 - PowerDNS vulnerabilities CVE-2014-8601 and CVE-2015-1868
2015-07-02 00:00:00
K16866 : PowerDNS vulnerabilities CVE-2014-8601 and CVE-2015-1868
2015-07-02 00:00:00