Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7768064 by Moritz Muehlenhoff at 2026-05-20T16:19:20+02:00
add pdns references
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,22 +5,32 @@ CVE-2026-41999
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE:
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-names-during-axfr
+ NOTE:
https://github.com/PowerDNS/pdns/commit/6b0567a56642f22bc9338bb4a4caeaaecde40f27
(auth-5.0.5)
CVE-2026-42000
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE:
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-names-during-axfr
+ NOTE:
https://github.com/PowerDNS/pdns/commit/7473d0e899f876507b001ba2966a82aafdce025e
(auth-5.0.5)
CVE-2026-42001
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE:
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-autoprimary-soa-queries
+ NOTE:
https://github.com/PowerDNS/pdns/commit/4459ba81e6674039e40bf15f177424f6b52cdd90
(auth-5.0.5)
CVE-2026-42002
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE:
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#concurrency-and-locking-defects-in-gss-tsig
+ NOTE:
https://github.com/PowerDNS/pdns/commit/27c388790cb49a11229732ee658c047bcdec9c96
(auth-5.0.5)
CVE-2026-42396
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE:
https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-member-zone-data-may-cause-catalog-zone-transfer-to-fail
+ NOTE:
https://github.com/PowerDNS/pdns/commit/d0bc49a5355906d21e06552b5e3fd87cd5c91406
(auth-5.0.5)
CVE-2026-3592 [Limit resolver server list size]
- bind9 1:9.20.23-1
CVE-2026-3039 [Fix GSS-API resource leak]
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7768064ca203f8bd535ad517b0e7d45d3c34b35
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7768064ca203f8bd535ad517b0e7d45d3c34b35
You're receiving this email because of your account on salsa.debian.org. Manage
all notifications: https://salsa.debian.org/-/profile/notifications | Help:
https://salsa.debian.org/help
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
