CVE-2015-5311

Description

PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service (assertion failure and server crash) via crafted query packets.

How to fix CVE-2015-5311

To remediate CVE-2015-5311, upgrade the affected package to a fixed version below.

• Debian/pdns—upgrade to 3.4.7-1 or later

Is CVE-2015-5311 being exploited?

Low — EPSS is 0.5%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 3.4.7-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2015-5311