Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-1868

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.

Related bugs and status

CVE-2015-1868 (Candidate) is related to these bugs:

Bug #1450037: CVE-2015-1868

		In	Importance	Status
1450037	CVE-2015-1868	pdns (Ubuntu)	Undecided	Fix Released
1450037	CVE-2015-1868	pdns (Ubuntu Trusty)	Undecided	Fix Released
1450037	CVE-2015-1868	pdns (Ubuntu Vivid)	Undecided	Fix Released
1450037	CVE-2015-1868	pdns (Ubuntu Utopic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

FEDORA: FEDORA-2015-7018
FEDORA: FEDORA-2015-7031
FEDORA: FEDORA-2015-7033
FEDORA: FEDORA-2015-7047
FEDORA: FEDORA-2015-7057
FEDORA: FEDORA-2015-7079
SECTRACK: 1032220
BID: 74306
DEBIAN: DSA-3306
DEBIAN: DSA-3307