CVE-2020-12244

Published: May 19, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An issue has been found in PowerDNS Recursor 4.1.0 through 4.3.0 where records in the answer section of a NXDOMAIN response lacking an SOA were not properly validated in SyncRes::processAnswer, allowing an attacker to bypass DNSSEC validation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2020-02.html

x_refsource_CONFIRM

[oss-security] 20200519 PowerDNS Recursor 4.3.1, 4.2.2. and 4.1.16 released fixing multiple vulnerabilities

mailing-list

x_refsource_MLIST

DSA-4691

vendor-advisory

x_refsource_DEBIAN

openSUSE-SU-2020:0698

vendor-advisory

x_refsource_SUSE

FEDORA-2020-d9abb0c06d

vendor-advisory

x_refsource_FEDORA

FEDORA-2020-c0ff3df740

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-12244

Description

Affected Products

References