Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for pdns

This update for pdns fixes the following issues:

Security issues fixed:

- CVE-2019-10203: Updated PostgreSQL schema to address a possible denial of service by an authorized user by inserting a crafted record in a MASTER type zone under their control. (boo#1142810)
- CVE-2019-10162: Fixed a denial of service but when authorized user to cause the server to exit by inserting a crafted record in a MASTER type zone under their control. (boo#1138582)
- CVE-2019-10163: Fixed a denial of service of slave server when an authorized master server sends large number of NOTIFY messages. (boo#1138582)

Non-security issues fixed:

- Enabled the option to disable superslave support.
- Fixed `pdnsutil b2b-migrate` to not lose NSEC3 settings.

Message

To fix the security issue in existing installations, run the following command against your PostgreSQL pdns database: ALTER TABLE domains ALTER notified_serial TYPE bigint USING CASE WHEN notified_serial >= 0 THEN notified_serial::bigint END;

Fixed bugs
bnc#1138582
VUL-0: CVE-2019-10162,CVE-2019-10163: pdns: multiple issues
bnc#1142810
VUL-1: CVE-2019-10203: pdns: PowerDNS Security Advisory 2019-06: Denial of service via crafted zone records
CVE-2019-10203
CVE-2019-10163
CVE-2019-10162
Selected Binaries
openSUSE Build Service is sponsored by
Places