Overview Details
Security update for pdns-recursor

This update for pdns-recursor fixes the following issues:

- update to 5.1.3:
* Implement rfc6303 special zones (mostly v6 reverse mappings)
* Distinguish OS imposed limits from app imposed limits,
specifically on chains.

- update to 5.1.2 (boo#1231292 CVE-2024-25590)
https://doc.powerdns.com/recursor/changelog/5.1.html#change-5.1.2

- update to 5.1.1
https://doc.powerdns.com/recursor/changelog/5.1.html#change-5.1.1
https://doc.powerdns.com/recursor/changelog/5.0.html#change-5.0.8

- update to 5.0.5:
* Do not count RRSIGs using unsupported algorithms toward RRSIGs
limit
* Correctly count NSEC3s considered when chasing the closest
encloser.
* Let NetmaskGroup parse dont-throttle-netmasks, allowing
negations.
* Fix types of two YAML settings (incoming.edns_padding_from,
incoming.proxy_protocol_from) that should be sequences of
subnets
* Fix trace=fail regression and add regression test for it

Fixed bugs
bnc#1231292
VUL-0: CVE-2024-25590: pdns-recursor: Crafted responses can lead to a denial of service due to cache inefficiencies in the Recursor
CVE-2024-25590
Selected Binaries
openSUSE Build Service is sponsored by
Places