Package: pdns / 3.4.1-4+deb8u8

Metadata

Package Version Patches format
pdns 3.4.1-4+deb8u8 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
CVE 2015 1868.patch | (download)

pdns/dnsparser.cc | 5 3 + 2 - 0 !
1 file changed, 3 insertions(+), 2 deletions(-)

 
---
CVE 2015 1868 2.patch | (download)

pdns/dnsparser.cc | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 
---
CVE 2015 5230 1.patch | (download)

pdns/distributor.hh | 22 20 + 2 - 0 !
1 file changed, 20 insertions(+), 2 deletions(-)

 
 [patch] avoid superfluous backend recycling
CVE 2015 5230 2.patch | (download)

pdns/distributor.hh | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 
 [patch] plug memleak
CVE 2016 5426_CVE 2016 5427.patch | (download)

pdns/dnsparser.cc | 16 13 + 3 - 0 !
pdns/dnsparser.hh | 2 1 + 1 - 0 !
pdns/misc.cc | 65 44 + 21 - 0 !
3 files changed, 58 insertions(+), 25 deletions(-)

 
 [patch] reject qname's wirelength > 255, `chopoff()` handle dot
 inside labels
CVE 2016 6172.patch | (download)

pdns/common_startup.cc | 2 2 + 0 - 0 !
pdns/pdns.conf-dist | 5 5 + 0 - 0 !
pdns/resolver.cc | 15 11 + 4 - 0 !
pdns/resolver.hh | 5 4 + 1 - 0 !
pdns/slavecommunicator.cc | 2 1 + 1 - 0 !
5 files changed, 23 insertions(+), 6 deletions(-)

 
 [patch] add limits to the size of received axfr, in megabytes

This prevents resource exhaustion in case the master is sending a
very large amount of data in an update.
b0c04ba2cfc3fcb758230041008ce7f189b528ed.patch | (download)

pdns/dnspacket.cc | 11 8 + 3 - 0 !
1 file changed, 8 insertions(+), 3 deletions(-)

 
 [patch] ignore invalid/empty tkey and tsig records

[zeha@d.o: removed second half which patches getTKEYRecord, which does not exist in 3.4.1 yet]
CVE 2016 7073_CVE 2016 7074.patch | (download)

pdns/dnspacket.cc | 9 6 + 3 - 0 !
pdns/dnsparser.cc | 6 5 + 1 - 0 !
pdns/dnsparser.hh | 2 1 + 1 - 0 !
pdns/dnssecinfra.cc | 19 18 + 1 - 0 !
pdns/dnssecinfra.hh | 1 1 + 0 - 0 !
pdns/resolver.cc | 8 7 + 1 - 0 !
pdns/tcpreceiver.cc | 22 11 + 11 - 0 !
7 files changed, 49 insertions(+), 18 deletions(-)

 
---
CVE 2016 7072.patch | (download)

pdns/webserver.cc | 37 27 + 10 - 0 !
1 file changed, 27 insertions(+), 10 deletions(-)

 
---
CVE 2016 7068.patch | (download)

pdns/common_startup.cc | 4 2 + 2 - 0 !
pdns/dnsbulktest.cc | 2 1 + 1 - 0 !
pdns/dnsdemog.cc | 2 1 + 1 - 0 !
pdns/dnsgram.cc | 2 1 + 1 - 0 !
pdns/dnspacket.cc | 11 7 + 4 - 0 !
pdns/dnspacket.hh | 3 2 + 1 - 0 !
pdns/dnsparser.cc | 15 12 + 3 - 0 !
pdns/dnsparser.hh | 10 5 + 5 - 0 !
pdns/dnsproxy.cc | 2 1 + 1 - 0 !
pdns/dnsreplay.cc | 4 2 + 2 - 0 !
pdns/dnsscan.cc | 2 1 + 1 - 0 !
pdns/dnsscope.cc | 2 1 + 1 - 0 !
pdns/dnstcpbench.cc | 4 2 + 2 - 0 !
pdns/lwres.cc | 2 1 + 1 - 0 !
pdns/mastercommunicator.cc | 2 1 + 1 - 0 !
pdns/nameserver.cc | 2 1 + 1 - 0 !
pdns/notify.cc | 2 1 + 1 - 0 !
pdns/nproxy.cc | 4 2 + 2 - 0 !
pdns/nsec3dig.cc | 2 1 + 1 - 0 !
pdns/pdns_recursor.cc | 2 1 + 1 - 0 !
pdns/resolver.cc | 6 3 + 3 - 0 !
pdns/rfc2136handler.cc | 4 2 + 2 - 0 !
pdns/saxfr.cc | 2 1 + 1 - 0 !
pdns/sdig.cc | 2 1 + 1 - 0 !
pdns/secpoll-auth.cc | 2 1 + 1 - 0 !
pdns/speedtest.cc | 4 2 + 2 - 0 !
pdns/tcpreceiver.cc | 6 3 + 3 - 0 !
pdns/ws-auth.cc | 4 2 + 2 - 0 !
28 files changed, 61 insertions(+), 48 deletions(-)

 
---
CVE 2016 2120.patch | (download)

pdns/dnsparser.cc | 4 2 + 2 - 0 !
1 file changed, 2 insertions(+), 2 deletions(-)

 
---
CVE 2017 15091.patch | (download)

pdns/ws-auth.cc | 5 5 + 0 - 0 !
1 file changed, 5 insertions(+)

 
---