CVE-2018-10851

Summary

PowerDNS Authoritative Server 3.3.0 up to 4.1.4 excluding 4.1.5 and 4.0.6, and PowerDNS Recursor 3.2 up to 4.1.4 excluding 4.1.5 and 4.0.9, are vulnerable to a memory leak while parsing malformed records that can lead to remote denial of service.

Affected Software

VendorProductVersion RangeStatus
The PowerDNS Projectpdns3.3.0 to 4.1.4, excluding 4.1.5 and 4.0.6affected
The PowerDNS Projectpdns-recursor3.2 to 4.1.4, excluding 4.1.5 and 4.0.9affected

Weaknesses

  • CWE-400: CWE-400

ADP Enrichment

CVE Program Container

Additional References

References