DSA-4424 pdns - security update
|
Información sobre el sistema
|
|
|
Software afectado |
Debian |
Descripción
|
Adam Dobrawy, Frederico Silva and Gregory Brzeski from HyperOne.comdiscovered that pdns, an authoritative DNS server, did not properlyvalidate user-supplied data when building a HTTP request from a DNSquery in the HTTP Connector of the Remote backend. This would allow aremote user to cause either a denial-of-service, or informationdisclosure.
More info:
https://www.debian.org/security/2019/dsa-4424 |
Identificadores estándar
|
Propiedad |
Valor |
CVE |
CVE-2019-3871 and DSA-4424. |