Toshifumi Sakaguchi

**Nome do software vulnerável e versões afetadas** Versões do PowerDNS Recursor anteriores à 4.9.9 Versões do PowerDNS Recursor anteriores à 5.0.9 Versões do PowerDNS Recursor anteriores à 5.1.2 **Descrição** Um invasor pode publicar uma zona contendo conjuntos específicos de registros de recursos. O processamento e o armazenamento em cache repetidos dos resultados desses conjuntos podem levar a uma negação de serviço. O problema está relacionado à validação insuficiente de entradas no PowerDNS Recursor. **Recomendações** Para versões do PowerDNS Recursor anteriores à 4.9.9, atualize para a versão 4.9.9 ou posterior. Para versões do PowerDNS Recursor anteriores à 5.0.9, atualize para a versão 5.0.9 ou posterior. Para versões do PowerDNS Recursor anteriores à 5.1.2, atualize para a versão 5.1.2 ou posterior.

Nome do software vulnerável e versões afetadas: NLnet Labs Unbound versões 1.21.0 e anteriores Descrição: O problema surge ao processar respostas com conjuntos de registros (RRsets) muito grandes que exigem compressão de nomes. Respostas maliciosas do servidor de origem com conjuntos de registros muito grandes podem fazer com que o Unbound gaste um tempo considerável aplicando compressão de nomes às respostas enviadas aos usuários, levando à degradação do desempenho e, potencialmente, a uma negação de serviço em ataques bem orquestrados. Um agente malicioso pode explorar isso consultando o Unbound sobre conteúdos especialmente criados de uma zona maliciosa com RRsets muito grandes. Antes de responder à consulta, o Unbound tenta aplicar a compactação de nomes, o que anteriormente era uma operação sem limite que podia bloquear a CPU até que todo o pacote fosse concluído. Recomendações: Para as versões 1.21.0 e anteriores do Unbound da NLnet Labs, atualize para a versão 1.21.1 ou posterior, que introduz um limite rígido no número de cálculos de compressão de nomes que está disposta a realizar por pacote, evitando que a CPU fique bloqueada por longos períodos.

**Name of the Vulnerable Software and Affected Versions** PowerDNS Recursor versions 4.0.0 through 4.1.4 **Description** A remote attacker can send a DNS query for a meta-type like OPT, leading to a zone being wrongly cached as failing DNSSEC validation. This issue arises when the parent zone is signed and all authoritative servers for that parent zone answer with FORMERR to a query for at least one of the meta-types. As a result, subsequent queries from clients requesting DNSSEC validation will be answered with a ServFail. **Recommendations** For PowerDNS Recursor versions 4.0.0 through 4.1.4, update to a version later than 4.1.4 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: PowerDNS Recursor versions prior to 4.0.8 Description: The issue is related to the parsing of authoritative answers, which can lead to a denial of service when an unauthenticated remote attacker sends a specially crafted answer containing a CNAME of a different class than IN. This results in a NULL pointer dereference. Recommendations: For versions prior to 4.0.8, update to version 4.0.8 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** PWR-Q200 (affected versions not specified) **Description** The issue allows remote attackers to conduct DNS cache poisoning attacks because the device does not use random values for source ports of DNS query packets. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NSD versions prior to 4.1.11 **Description** The issue allows remote DNS master servers to cause a denial of service, resulting in /tmp disk consumption and slave server crash, via a zone transfer with unlimited data. **Recommendations** For versions prior to 4.1.11, update to version 4.1.11 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** PowerDNS Recursor versions prior to 3.6.4 PowerDNS Recursor versions 3.7.x prior to 3.7.3 PowerDNS Authoritative Server versions prior to 3.3.3 PowerDNS Authoritative Server versions 3.4.x prior to 3.4.5 **Description** The issue allows remote attackers to cause a denial of service, resulting in CPU consumption or a crash, via a request with a long name that refers to itself. This problem exists due to an incomplete fix for a previous issue. **Recommendations** For PowerDNS Recursor versions prior to 3.6.4, update to version 3.6.4 or later. For PowerDNS Recursor versions 3.7.x prior to 3.7.3, update to version 3.7.3 or later. For PowerDNS Authoritative Server versions prior to 3.3.3, update to version 3.3.3 or later. For PowerDNS Authoritative Server versions 3.4.x prior to 3.4.5, update to version 3.4.5 or later.

**Name of the Vulnerable Software and Affected Versions** PowerDNS Recursor versions 3.5.x through 3.6.2 and versions 3.7.x prior to 3.7.2 PowerDNS Authoritative Server versions 3.2.x through 3.3.1 and versions 3.4.x prior to 3.4.4 **Description** The issue allows remote attackers to cause a denial of service, resulting in CPU consumption or a crash, via a request with a name that refers to itself. This is related to the label decompression functionality. **Recommendations** For PowerDNS Recursor versions 3.5.x through 3.6.2, update to version 3.6.3 or later. For PowerDNS Recursor versions 3.7.x prior to 3.7.2, update to version 3.7.2 or later. For PowerDNS Authoritative Server versions 3.2.x through 3.3.1, update to version 3.3.2 or later. For PowerDNS Authoritative Server versions 3.4.x prior to 3.4.4, update to version 3.4.4 or later.