CVE-2015-5311

PowerDNS Authoritative 3.4.4-3.4.7 - Denial of Service via Crafted Query Packets

Title source: llm
STIX 2.1

Description

PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service (assertion failure and server crash) via crafted query packets.

References (6)

Core 6
Core References
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2015/11/09/3
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172193.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034098
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171976.html
Patch, Vendor Advisory x_refsource_confirm
https://doc.powerdns.com/md/security/powerdns-advisory-2015-03/
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171865.html

Scores

EPSS 0.6746
EPSS Percentile 99.2%

Details

CWE
CWE-20
Status published
Products (3)
powerdns/authoritative 3.4.4
powerdns/authoritative 3.4.5
powerdns/authoritative 3.4.6
Published Nov 17, 2015
Tracked Since Feb 18, 2026