Security update for pdns
This update for pdns fixes the following issues:
- CVE-2016-2120: Crafted zone record could have caused a denial of service (bsc#1018329).
- CVE-2016-7068: Crafted queries could have caused abnormal CPU usage (bsc#1018326).
- CVE-2016-7072: Denial of service via the web server (bsc#1018327).
- CVE-2016-7073: Fixed insufficient validation of TSIG signatures (bsc#1018328).
- CVE-2016-7074: Fixed insufficient validation of TSIG signatures ((bsc#1018328).
-
Submitted by
Adam Majer (adamm)
Fixed bugs
bnc#1018326
VUL-0: CVE-2016-7068: pdns,pdns-recursor: Crafted queries can cause abnormal CPU usage (2016-02)
bnc#1018327
VUL-0: CVE-2016-7072: pdns: Denial of service via the web server (2016-03)
bnc#1018328
VUL-0: CVE-2016-7073,CVE-2016-7074: pdns,pdns-recursor: Insufficient validation of TSIG signatures (2016-04)
bnc#1018329
VUL-0: CVE-2016-2120: pdns: Crafted zone record can cause a denial of service (2016-05)
