CRITICAL9.8CVE-2026-33608An attacker can send a notify request that causes a new secondary domain to be added to the bind backend, but causes said backend to update… from 0
from 0, < 3.3.1-1
from 0, < 3.1-4.1+deb7u1
CRITICAL9.8An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used.
from 0, < 4.4.0-1
HIGH8.8pdns - security update
from 0, < 4.1.6-2
HIGH8.8pdns - security update
from 0, < 4.0.3-1+deb9u4
HIGH8.8pdns - security update
from 0, < 3.4.1-4+deb8u9
HIGH8.6Insufficient Validation of Names During AXFR
from 0
HIGH8.1An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used.
from 0, < 4.4.0-1
HIGH7.8pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay.
from 0, < 4.1.2-1
HIGH7.5Concurrency and locking defects in GSS-TSIG
from 0
HIGH7.5Insufficient Validation of Autoprimary SOA Queries
from 0
HIGH7.5A rogue primary server may cause file descriptor exhaustion and eventually a denial of service, when a PowerDNS secondary server forwards a…
from 0
HIGH7.5An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service.
from 0
HIGH7.5An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service.
from 0
HIGH7.5In PowerDNS Authoritative Server before 4.4.3, 4.5.x before 4.5.4, and 4.6.x before 4.6.1 and PowerDNS Recursor before 4.4.8, 4.5.x before…
from 0
HIGH7.5An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used.
from 0, < 4.4.0-1
HIGH7.5pdns - security update
from 0, < 3.4.1-4+deb8u3
HIGH7.5pdns - security update
from 0, < 3.4.6-1
HIGH7.5pdns - security update
from 0, < 4.0.3-1+deb9u5
HIGH7.5pdns - security update
from 0, < 4.1.6-3
HIGH7.5pdns - security update
from 0, < 3.4.1-4+deb8u10
HIGH7.5PowerDNS Authoritative Server 4.1.0 up to 4.1.4 inclusive and PowerDNS Recursor 4.0.0 up to 4.1.4 inclusive are vulnerable to a packet cach…
from 0, < 4.1.5-1
HIGH7.5PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 and 4.0.9,…
from 0, < 4.1.5-1
HIGH7.5pdns-recursor - security update
from 0, < 4.0.2-1
HIGH7.5An issue has been found in PowerDNS Authoritative Server before 3.4.11 and 4.0.2 allowing a remote, unauthenticated attacker to cause a den…
from 0, < 4.0.2-1
HIGH7.5PowerDNS (aka pdns) Authoritative Server before 3.4.10 does not properly handle a .
from 0, < 4.0.0~alpha1-1
HIGH7.5pdns - security update
from 0, < 4.0.0~alpha1-1
HIGH7.5pdns - security update
from 0, < 3.4.1-4+deb8u6
HIGH7.5pdns - security update
from 0, < 3.1-4.1+deb7u2
HIGH7.1An issue has been found in the API component of PowerDNS Authoritative 4.x up to and including 4.0.4 and 3.x up to and including 3.4.11, wh…
from 0, < 4.0.5-1
MEDIUM6.8PowerDNS (aka pdns) Authoritative Server before 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and…
from 0, < 4.0.1-1
MEDIUM6.5Insufficient Validation of Member Zone Data May Cause Catalog Zone Transfer to Fail
from 0
MEDIUM6.5Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees.
from 0
MEDIUM6.5pdns - security update
from 0, < 4.0.2-1
MEDIUM6.5pdns - security update
from 0, < 3.1-4.1+deb7u3
MEDIUM6.5pdns - security update
from 0, < 3.4.1-4+deb8u7
MEDIUM5.9An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of man-in…
from 0, < 4.0.2-1
MEDIUM5.9An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of man-in…
from 0, < 4.0.2-1
MEDIUM4.9An operator allowed to use the REST API can cause the Authoritative server to produce invalid HTTPS or SVCB record data, which can in turn…
from 0
MEDIUM4.8Incorrect Behaviour of Views with TCP PROXY Requests
from 0
MEDIUM4.3An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records i…
from 0, < 4.3.1-1
MEDIUM4.3PowerDNS Authoritative daemon , pdns versions 4.0.x before 4.0.9, 4.1.x before 4.1.11, exiting when encountering a serial between 2^31 and…
from 0, < 4.2.0-1
MEDIUM4.3A Vulnerability has been found in PowerDNS Authoritative Server before versions 4.1.9, 4.0.8 allowing a remote, authorized master server to…
from 0, < 4.1.6-3
—PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows remote attackers to cause a denial of service (assertion failure and ser…
from 0, < 3.4.7-1
—pdns-recursor - security update
from 0, < 3.4.1-4+deb8u2
—pdns-recursor - security update
from 0, < 3.4.5-1
—The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Serve…
from 0, < 3.4.4-1
—pdns - packet loop
from 0, < 3.0-1.1
—pdns - packet loop
from 0, < 2.9.21.2-1+lenny1
—PowerDNS before 2.9.21.2 allows remote attackers to cause a denial of service (daemon crash) via a CH HINFO query.
from 0, < 2.9.21.2-1
—pdns - DNS spoofing
from 0, < 2.9.20-8+etch1
—pdns - DNS spoofing
from 0, < 2.9.21.1-1
—pdns
from 0, < 2.9.20-4
—pdns
from 0, < 2.9.17-13sarge3
—pdns
from 0, < 2.9.17-13sarge3
—The DNS implementation of PowerDNS 2.9.16 and earlier allows remote attackers to cause a denial of service via a compressed DNS packet with…
from 0, < 2.9.17-1
—PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that…
from 0, < 2.9.18-1
—pdns - several
from 0, < 2.9.18-1
—pdns - several
from 0, < 2.9.17-13sarge1
—The DNSPacket::expand method in dnspacket.cc in PowerDNS before 2.9.17 allows remote attackers to cause a denial of service by sending a ra…
from 0, < 2.9.16-6