GLSA-200502-15 : PowerDNS: Denial of Service vulnerability
Medium Nessus Plugin ID 16452
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200502-15 (PowerDNS: Denial of Service vulnerability)
A vulnerability has been reported in the DNSPacket::expand method of dnspacket.cc.
An attacker could cause a temporary Denial of Service by sending a random stream of bytes to the PowerDNS Daemon.
There is no known workaround at this time.
SolutionAll PowerDNS users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=net-dns/pdns-2.9.17'