git: 5ad38d76715c - main - security/vuxml: Document powerdns vulnerabilities
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 30 Mar 2023 19:03:06 UTC
The branch main has been updated by flo:
URL: https://cgit.FreeBSD.org/ports/commit/?id=5ad38d76715ceb48257bc2df1c148504468100f1
commit 5ad38d76715ceb48257bc2df1c148504468100f1
Author: Ralf van der Enden <tremere@cainites.net>
AuthorDate: 2023-03-30 18:28:59 +0000
Commit: Florian Smeets <flo@FreeBSD.org>
CommitDate: 2023-03-30 19:02:28 +0000
security/vuxml: Document powerdns vulnerabilities
PR: 270537
---
security/vuxml/vuln/2023.xml | 27 +++++++++++++++++++++++++++
1 file changed, 27 insertions(+)
diff --git a/security/vuxml/vuln/2023.xml b/security/vuxml/vuln/2023.xml
index 8dd558e548b7..c80eef5326b6 100644
--- a/security/vuxml/vuln/2023.xml
+++ b/security/vuxml/vuln/2023.xml
@@ -1,3 +1,30 @@
+ <vuln vid="dc33795f-ced7-11ed-b1fe-6805ca2fa271">
+ <topic>powerdns-recursor -- denial of service</topic>
+ <affects>
+ <package>
+ <name>powerdns-recursor</name>
+ <range><lt>4.8.4</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>PowerDNS Team reports:</p>
+ <blockquote cite="https://blog.powerdns.com/2023/03/29/security-advisory-2023-02-for-powerdns-recursor-up-to-and-including-4-6-5-4-7-4-and-4-8-3/">
+ <p>PowerDNS Security Advisory 2023-02: Deterred spoofing attempts
+ can lead to authoritative servers being marked unavailable</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2023-26437</cvename>
+ <url>https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2023-02.html</url>
+ </references>
+ <dates>
+ <discovery>2023-03-29</discovery>
+ <entry>2023-03-30</entry>
+ </dates>
+ </vuln>
+
<vuln vid="96d84238-b500-490b-b6aa-2b77090a0410">
<topic>xorg-server -- Overlay Window Use-After-Free</topic>
<affects>