VYPR

rpm package

suse/dnsdist&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

pkg:rpm/suse/dnsdist&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS

Vulnerabilities (4)

  • CVE-2025-30193HigMay 20, 2025
    affected < 1.8.0-150100.3.8.1fixed 1.8.0-150100.3.8.1

    In some circumstances, when DNSdist is configured to allow an unlimited number of queries on a single, incoming TCP connection from a client, an attacker can cause a denial of service by crafting a TCP exchange that triggers an exhaustion of the stack and a crash of DNSdist, caus

  • CVE-2018-14663Nov 26, 2018
    affected < 1.8.0-150100.3.5.1fixed 1.8.0-150100.3.5.1

    An issue has been found in PowerDNS DNSDist before 1.3.3 allowing a remote attacker to craft a DNS query with trailing data such that the addition of a record by dnsdist, for example an OPT record when adding EDNS Client Subnet, might result in the trailing data being smuggled to

  • CVE-2016-7069MedSep 11, 2018
    affected < 1.8.0-150100.3.5.1fixed 1.8.0-150100.3.5.1

    An issue has been found in dnsdist before 1.2.0 in the way EDNS0 OPT records are handled when parsing responses from a backend. When dnsdist is configured to add EDNS Client Subnet to a query, the response may contain an EDNS0 OPT record that has to be removed before forwarding t

  • CVE-2017-7557HigAug 22, 2017
    affected < 1.8.0-150100.3.5.1fixed 1.8.0-150100.3.5.1

    dnsdist version 1.1.0 is vulnerable to a flaw in authentication mechanism for REST API potentially allowing CSRF attack.