openSUSE-SU-2020:1687-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2020:1687-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2020:1687-1
Related
Published
2020-10-17T14:22:35Z
Modified
2020-10-17T14:22:35Z
Summary
Security update for pdns-recursor
Details

This update for pdns-recursor fixes the following issues:

-pdns-recursorwas updated to 4.1.1 and 4.3.5: - CVE-2020-25829: Fixed a cache pollution related to DNSSEC validation (boo#1177383) - CVE-2020-14196: Fixed an access restriction bypass with API key and password authentication (boo#1173302).

References

Affected packages

SUSE:Package Hub 12 SP1 / pdns-recursor

Package

Name
pdns-recursor
Purl
purl:rpm/suse/pdns-recursor&distro=SUSE%20Package%20Hub%2012%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.3.5-bp152.2.12.1

Ecosystem specific 

{
    "binaries": [
        {
            "pdns-recursor": "4.3.5-bp152.2.12.1"
        }
    ]
}

SUSE:Package Hub 15 SP1 / pdns-recursor

Package

Name
pdns-recursor
Purl
purl:rpm/suse/pdns-recursor&distro=SUSE%20Package%20Hub%2015%20SP1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.3.5-bp152.2.12.1

Ecosystem specific 

{
    "binaries": [
        {
            "pdns-recursor": "4.3.5-bp152.2.12.1"
        }
    ]
}

SUSE:Package Hub 15 SP2 / pdns-recursor

Package

Name
pdns-recursor
Purl
purl:rpm/suse/pdns-recursor&distro=SUSE%20Package%20Hub%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.3.5-bp152.2.12.1

Ecosystem specific 

{
    "binaries": [
        {
            "pdns-recursor": "4.3.5-bp152.2.12.1"
        }
    ]
}

openSUSE:Leap 15.1 / pdns-recursor

Package

Name
pdns-recursor
Purl
purl:rpm/suse/pdns-recursor&distro=openSUSE%20Leap%2015.1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.3.5-bp152.2.12.1

Ecosystem specific 

{
    "binaries": [
        {
            "pdns-recursor": "4.3.5-bp152.2.12.1"
        }
    ]
}

openSUSE:Leap 15.2 / pdns-recursor

Package

Name
pdns-recursor
Purl
purl:rpm/suse/pdns-recursor&distro=openSUSE%20Leap%2015.2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.3.5-bp152.2.12.1

Ecosystem specific 

{
    "binaries": [
        {
            "pdns-recursor": "4.3.5-bp152.2.12.1"
        }
    ]
}