CVE-2024-25590 https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released
Created attachment 254091 [details] Update PowerDNS Recursor to 5.1.2 + fix CVE While here, rename rc.d script to pdns_recursor and add a message about changed config (yaml).
Created attachment 254092 [details] Add VuXML entry for powerdns-recursor
Remove GNU_CONFIGURE_MANPREFIX. After rename pdns-recursor to pdns_recursor: service pdns-recursor showyaml => service pdns_recursor showyaml in pkg-message.in.
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=bbb9892c217f047fc2c160b1f327967ebdc78824 commit bbb9892c217f047fc2c160b1f327967ebdc78824 Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-10-09 20:25:23 +0000 Commit: Vladimir Druzenko <vvd@FreeBSD.org> CommitDate: 2024-10-09 20:26:44 +0000 security/vuxml: Add record about CVE-2024-25590 in dns/powerdns-recursor PowerDNS Recursor Security Advisory 2024-04: https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released PR: 281914 security/vuxml/vuln/2024.xml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+)
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=7386c2ffd587aad5d720f2c117827d30bf844e3d commit 7386c2ffd587aad5d720f2c117827d30bf844e3d Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-10-09 20:23:26 +0000 Commit: Vladimir Druzenko <vvd@FreeBSD.org> CommitDate: 2024-10-09 20:26:44 +0000 dns/powerdns-recursor: Update 5.1.1 → 5.1.2 (fix CVE-2024-25590) PowerDNS Recursor Security Advisory 2024-04: An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service. CVSS Score: 7.5 https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released PR: 281914 MFH: 2024Q4 dns/powerdns-recursor/Makefile | 6 ++---- dns/powerdns-recursor/distinfo | 6 +++--- .../files/{pdns-recursor.in => pdns_recursor.in} | 8 ++++++++ dns/powerdns-recursor/files/pkg-message.in | 15 +++++++++++++++ dns/powerdns-recursor/pkg-plist | 2 +- 5 files changed, 29 insertions(+), 8 deletions(-)
A commit in branch 2024Q4 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=3b4fdc63688f62f9776340778ad107e0a44ebf40 commit 3b4fdc63688f62f9776340778ad107e0a44ebf40 Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-10-09 20:23:26 +0000 Commit: Vladimir Druzenko <vvd@FreeBSD.org> CommitDate: 2024-10-09 20:33:42 +0000 dns/powerdns-recursor: Update 5.1.1 → 5.1.2 (fix CVE-2024-25590) PowerDNS Recursor Security Advisory 2024-04: An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service. CVSS Score: 7.5 https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released PR: 281914 MFH: 2024Q4 (cherry picked from commit 7386c2ffd587aad5d720f2c117827d30bf844e3d) dns/powerdns-recursor/Makefile | 6 ++---- dns/powerdns-recursor/distinfo | 6 +++--- .../files/{pdns-recursor.in => pdns_recursor.in} | 8 ++++++++ dns/powerdns-recursor/files/pkg-message.in | 15 +++++++++++++++ dns/powerdns-recursor/pkg-plist | 2 +- 5 files changed, 29 insertions(+), 8 deletions(-)
Thanks.