Index: vuln.xml
===================================================================
--- vuln.xml	(revision 486082)
+++ vuln.xml	(working copy)
@@ -58,6 +58,37 @@
   * Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
 -->
 <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+  <vuln vid="f6d6308a-f2ec-11e8-b005-6805ca2fa271">
+    <topic>powerdns-recursor -- Crafted query can cause a denial of service</topic>
+    <affects>
+      <package>
+        <name>powerdns-recursor</name>
+        <range><lt>4.1.8</lt></range>
+      </package>
+    </affects>
+    <description>
+      <body xmlns="http://www.w3.org/1999/xhtml">
+        <p>powerdns Team reports:</p>
+        <blockquote cite="https://doc.powerdns.com/recursor/changelog/4.1.html">
+          <p>CVE-2018-16855: An issue has been found in PowerDNS Recursor where a remote
+            attacker sending a DNS query can trigger an out-of-bounds memory read while
+            computing the hash of the query for a packet cache lookup, possibly leading to a
+            crash. When the PowerDNS Recursor is run inside a supervisor like supervisord or
+            systemd, a crash will lead to an automatic restart, limiting the impact to a
+            somewhat degraded service.</p>
+        </blockquote>
+      </body>
+    </description>
+    <references>
+      <url>https://doc.powerdns.com/recursor/changelog/4.1.html</url>
+      <cvename>CVE-2018-16855</cvename>
+    </references>
+    <dates>
+      <discovery>2018-11-26</discovery>
+      <entry>2018-11-28</entry>
+    </dates>
+  </vuln>
+
   <vuln vid="54976998-f248-11e8-81e2-005056a311d1">
     <topic>samba -- multiple vulnerabilities</topic>
     <affects>