UBUNTU-CVE-2015-1868

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2015-1868

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2015/UBUNTU-CVE-2015-1868.json

JSON Data

https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2015-1868

Related

CVE-2015-1868

Published

2015-05-18T15:59:00Z

Modified

2025-01-13T10:21:09Z

Summary

[none]

Details

The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself.

References

Affected packages

Ubuntu:14.04:LTS / pdns

Package

Name: pdns
Purl: pkg:deb/ubuntu/pdns@3.3-2ubuntu0.1?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.3-2ubuntu0.1

Affected versions

3.*

3.1-4build1

3.3-1

3.3-2

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-geo"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-ldap"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-lua"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-mysql"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-pgsql"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-pipe"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-backend-sqlite3"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-server"
        },
        {
            "binary_version": "3.3-2ubuntu0.1",
            "binary_name": "pdns-server-dbg"
        }
    ]
}

Ubuntu:14.04:LTS / pdns-recursor

Package

Name: pdns-recursor
Purl: pkg:deb/ubuntu/pdns-recursor@3.5.3-1ubuntu0.1?arch=source&distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.5.3-1ubuntu0.1

Affected versions

3.*

3.3-3

3.5.3-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "3.5.3-1ubuntu0.1",
            "binary_name": "pdns-recursor"
        },
        {
            "binary_version": "3.5.3-1ubuntu0.1",
            "binary_name": "pdns-recursor-dbg"
        },
        {
            "binary_version": "3.5.3-1ubuntu0.1",
            "binary_name": "pdns-recursor-dbgsym"
        }
    ]
}

Ubuntu:16.04:LTS / pdns-recursor

Package

Name: pdns-recursor
Purl: pkg:deb/ubuntu/pdns-recursor@3.7.3-1?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.7.3-1

Ecosystem specific

{
    "availability": "No subscription required",
    "ubuntu_priority": "medium",
    "binaries": [
        {
            "binary_version": "3.7.3-1",
            "binary_name": "pdns-recursor"
        },
        {
            "binary_version": "3.7.3-1",
            "binary_name": "pdns-recursor-dbg"
        },
        {
            "binary_version": "3.7.3-1",
            "binary_name": "pdns-recursor-dbgsym"
        }
    ]
}