git: 0306de43f966 - main - security/vuxml: add VuXML entry for CVE-2025-30195 for dns/powerdns-recursor
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 01 May 2025 04:53:08 UTC
The branch main has been updated by pi:
URL: https://cgit.FreeBSD.org/ports/commit/?id=0306de43f9667dba776a9eeb3ea8f599ffd4c37b
commit 0306de43f9667dba776a9eeb3ea8f599ffd4c37b
Author: Ralf van der Enden <tremere@cainites.net>
AuthorDate: 2025-05-01 04:52:08 +0000
Commit: Kurt Jaeger <pi@FreeBSD.org>
CommitDate: 2025-05-01 04:52:08 +0000
security/vuxml: add VuXML entry for CVE-2025-30195 for dns/powerdns-recursor
PR: 286139
Reported-by: Jordan Ostreff <jordan@ostreff.info>
---
security/vuxml/vuln/2025.xml | 27 +++++++++++++++++++++++++++
1 file changed, 27 insertions(+)
diff --git a/security/vuxml/vuln/2025.xml b/security/vuxml/vuln/2025.xml
index e4786188e64e..b0fe7584fe75 100644
--- a/security/vuxml/vuln/2025.xml
+++ b/security/vuxml/vuln/2025.xml
@@ -1,3 +1,30 @@
+ <vuln vid="d70d5e0a-1f5e-11f0-9c67-6805ca2fa271">
+ <topic>powerdns-recursor -- denial of service</topic>
+ <affects>
+ <package>
+ <name>powerdns-recursor</name>
+ <range><eq>5.2.0</eq></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>PowerDNS Team reports:</p>
+ <blockquote cite="https://blog.powerdns.com/2025/04/07/powerdns-recursor-5-2-1-released">
+ <p>PowerDNS Security Advisory 2025-01: A crafted zone can
+ lead to an illegal memory access in the Recursor</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2025-30195</cvename>
+ <url>https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-01.html</url>
+ </references>
+ <dates>
+ <discovery>2025-04-07</discovery>
+ <entry>2025-04-22</entry>
+ </dates>
+ </vuln>
+
<vuln vid="409206f6-25e6-11f0-9360-b42e991fc52e">
<topic>sqlite -- integer overflow</topic>
<affects>