[Git][security-tracker-team/security-tracker][master] add pdns references
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed May 20 15:19:29 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e7768064 by Moritz Muehlenhoff at 2026-05-20T16:19:20+02:00
add pdns references
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5,22 +5,32 @@ CVE-2026-41999
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-names-during-axfr
+ NOTE: https://github.com/PowerDNS/pdns/commit/6b0567a56642f22bc9338bb4a4caeaaecde40f27 (auth-5.0.5)
CVE-2026-42000
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-names-during-axfr
+ NOTE: https://github.com/PowerDNS/pdns/commit/7473d0e899f876507b001ba2966a82aafdce025e (auth-5.0.5)
CVE-2026-42001
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-autoprimary-soa-queries
+ NOTE: https://github.com/PowerDNS/pdns/commit/4459ba81e6674039e40bf15f177424f6b52cdd90 (auth-5.0.5)
CVE-2026-42002
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#concurrency-and-locking-defects-in-gss-tsig
+ NOTE: https://github.com/PowerDNS/pdns/commit/27c388790cb49a11229732ee658c047bcdec9c96 (auth-5.0.5)
CVE-2026-42396
- pdns 5.0.5-1
[bookworm] - pdns <end-of-life> (See #1119290)
[bullseye] - pdns <end-of-life> (see DLA 4471)
+ NOTE: https://docs.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-06.html#insufficient-validation-of-member-zone-data-may-cause-catalog-zone-transfer-to-fail
+ NOTE: https://github.com/PowerDNS/pdns/commit/d0bc49a5355906d21e06552b5e3fd87cd5c91406 (auth-5.0.5)
CVE-2026-3592 [Limit resolver server list size]
- bind9 1:9.20.23-1
CVE-2026-3039 [Fix GSS-API resource leak]
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7768064ca203f8bd535ad517b0e7d45d3c34b35
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7768064ca203f8bd535ad517b0e7d45d3c34b35
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260520/d4a9d23a/attachment.htm>
More information about the debian-security-tracker-commits
mailing list