Nicolas Dehaine

**Name of the Vulnerable Software and Affected Versions** PowerDNS Authoritative Server versions 4.4.2 and earlier, 4.5.x before 4.5.4, 4.6.x before 4.6.1 PowerDNS Recursor versions 4.4.7 and earlier, 4.5.x before 4.5.8, 4.6.x before 4.6.1 **Description** The issue is caused by insufficient validation of an IXFR end condition, leading to incomplete zone transfers being handled as successful transfers. **Recommendations** For PowerDNS Authoritative Server versions 4.4.2 and earlier, update to version 4.4.3 or later. For PowerDNS Authoritative Server versions 4.5.x before 4.5.4, update to version 4.5.4 or later. For PowerDNS Authoritative Server versions 4.6.x before 4.6.1, update to version 4.6.1 or later. For PowerDNS Recursor versions 4.4.7 and earlier, update to version 4.4.8 or later. For PowerDNS Recursor versions 4.5.x before 4.5.8, update to version 4.5.8 or later. For PowerDNS Recursor versions 4.6.x before 4.6.1, update to version 4.6.1 or later.