openSUSE 10 Security Update : pdns (pdns-2275)
High Nessus Plugin ID 27386
SynopsisThe remote openSUSE host is missing a security update.
DescriptionTwo security problems that have been found in PowerDNS are fixed by this update :
CVE-2006-4251: The PowerDNS Recursor can be made to crash by sending malformed questions to it over TCP potentially executing code.
CVE-2006-4252: Zero second CNAME TTLs can make PowerDNS exhaust allocated stack space, and crash.
SolutionUpdate the affected pdns package.