DSA-1968-2 pdns-recursor -- DNS cache poisoningID: oval:org.secpod.oval:def:600082 | Date: (C)2011-01-28 (M)2022-10-10 |
Class: PATCH | Family: unix |
It was discovered that pdns-recursor, the PowerDNS recursive name server, contains a cache poisoning vulnerability which may allow attackers to trick the server into serving incorrect DNS data . This DSA provides a security update for the old stable distribution , similar to the previous update in DSA-1968-1. Extra care should be applied when installing this update. It is an etch backport of the lenny version of the package . Major differences in internal domain name processing made backporting just the security fix too difficult. For the old stable distribution , this problem has been fixed in version 3.1.4+v3.1.7-0+etch1. We recommend that you upgrade your pdns-recursor package.