Multiple vulnerabilities in the PowerDNS dnsdist load balancer (CVE-2026-33257, CVE-2026-33260, CVE-2026-33608, CVE-2026-33609, CVE-2026-33610, CVE-2026-33611) can lead to denial of service, information disclosure, or ACL bypass. The CVSS scores range from Medium (5.3) to High (7.4). Affected versions include PowerDNS Authoritative Server 4.9.0 to 4.9.13 and 5.0.0 to 5.0.4, dnsdist 1.9.0 to 1.9.12 and 2.0.0 to 2.0.3, and PowerDNS Recursor 5.2.0 to 5.2.8. The fixed versions are Authoritative 4.9.14 or 5.0.4, dnsdist 1.9.13 or 2.0.4, and Recursor 5.2.9 or 5.3.6.
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6233-1] pdns security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6233-1] pdns security update From: Moritz Muehlenhoff <jmm@debian.org> Date: Tue, 28 Apr 2026 19:02:48 +0000 Message-id: <[🔎] afEEWERh5r7Jksy-@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6233-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff April 28, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : pdns CVE ID : CVE-2026-33257 CVE-2026-33260 CVE-2026-33608 CVE-2026-33609 CVE-2026-33610 CVE-2026-33611 Multiple security vulnerabilities were discovered in the dnsdist DNS loadbalancer, which could result in denial of service, information disclosure or ACL bypass. For the stable distribution (trixie), these problems have been fixed in version 4.9.14-0+deb13u1. We recommend that you upgrade your pdns packages. For the detailed security status of pdns please refer to its security tracker page at: https://security-tracker.debian.org/tracker/pdns Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmnxAasACgkQEMKTtsN8 Tja97g/7ByuwwDWfLCodSFRzPWnI/SXOQeVs2melxTYku66IoKEpO7SxcOaHyreL GTg0GGUWbveVaiANI5KrvONnzTh4/kuFAGJXdhRpSQtQqzIJJjRO4R6YNCSakLH6 p++PrncsbImf6uR24TzBfbT/9t/E4OIErqAgFV3t9aauIse0Nw/PFjywecNmBJpi PxTYUXVxwvQYJ3Yn9sdh1X3ivXAd6qBdSLkn6WEmieWVIwjIQOVYWOaCwQ1dHxd6 Zu0sY4Lx1hqOzrDaO247C4JH9osj3K8zlzZe9qeuV8gEsOJF2IuNLw1IEEs+GKWJ 54J02pu4Hc9ZBNPjVCy0HqlSivjPW4NVUKjrMrx0Xn/HW3RI/vfpCfMwhPTUBKgA 5dMvRGSZ9Dhp815JQSjBly96TXKAZ7YQCGfeymhtNedHw/ACt+XffPirYphWhCeX 3skXzHeTzv8j353zEtwbiC5Bv2/19Nu/fzWdYAjJfUzdwKLlGm+vgm1fMNUWDwpI PmQ6fvNK3S053RXKJxd2m6WW23xTz0SfPbsXZooJihK/oZ+c1yTCi4PDPF01enNe G+E2vpZOV/Iwl+xERP9yqLoWaKAKuq8vlBuBDGvEpY1zk1WttYxAyINQaJJzjGqn jVcL1dZVqzAnVP2UzFvrgHcFQKpyJkTJz7NPyFcV3dGRINKCz14= =G4qD -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Moritz Muehlenhoff (on-list) Moritz Muehlenhoff (off-list) Prev by Date: [SECURITY] [DSA 6232-1] webkit2gtk security update Next by Date: [SECURITY] [DSA 6234-1] pdns-recursor security update Previous by thread: [SECURITY] [DSA 6232-1] webkit2gtk security update Next by thread: [SECURITY] [DSA 6234-1] pdns-recursor security update Index(es): Date Thread