Bug 281914
| Summary: | dns/powerdns-recursor: Update 5.1.1 → 5.1.2 | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | Ports & Packages | Reporter: | Jordan Ostreff <jordan> | ||||||
| Component: | Individual Port(s) | Assignee: | Vladimir Druzenko <vvd> | ||||||
| Status: | Closed FIXED | ||||||||
| Severity: | Affects Some People | CC: | tremere, vvd | ||||||
| Priority: | --- | Flags: | bugzilla:
maintainer-feedback?
(tremere) vvd: merge-quarterly+ |
||||||
| Version: | Latest | ||||||||
| Hardware: | Any | ||||||||
| OS: | Any | ||||||||
| Attachments: |
|
||||||||
|
Description
Jordan Ostreff
2024-10-07 07:27:02 UTC
Created attachment 254091 [details]
Update PowerDNS Recursor to 5.1.2 + fix CVE
While here, rename rc.d script to pdns_recursor and add a message about changed config (yaml).
Created attachment 254092 [details]
Add VuXML entry for powerdns-recursor
Remove GNU_CONFIGURE_MANPREFIX. After rename pdns-recursor to pdns_recursor: service pdns-recursor showyaml => service pdns_recursor showyaml in pkg-message.in. A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=bbb9892c217f047fc2c160b1f327967ebdc78824 commit bbb9892c217f047fc2c160b1f327967ebdc78824 Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-10-09 20:25:23 +0000 Commit: Vladimir Druzenko <vvd@FreeBSD.org> CommitDate: 2024-10-09 20:26:44 +0000 security/vuxml: Add record about CVE-2024-25590 in dns/powerdns-recursor PowerDNS Recursor Security Advisory 2024-04: https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released PR: 281914 security/vuxml/vuln/2024.xml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=7386c2ffd587aad5d720f2c117827d30bf844e3d commit 7386c2ffd587aad5d720f2c117827d30bf844e3d Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-10-09 20:23:26 +0000 Commit: Vladimir Druzenko <vvd@FreeBSD.org> CommitDate: 2024-10-09 20:26:44 +0000 dns/powerdns-recursor: Update 5.1.1 → 5.1.2 (fix CVE-2024-25590) PowerDNS Recursor Security Advisory 2024-04: An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service. CVSS Score: 7.5 https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released PR: 281914 MFH: 2024Q4 dns/powerdns-recursor/Makefile | 6 ++---- dns/powerdns-recursor/distinfo | 6 +++--- .../files/{pdns-recursor.in => pdns_recursor.in} | 8 ++++++++ dns/powerdns-recursor/files/pkg-message.in | 15 +++++++++++++++ dns/powerdns-recursor/pkg-plist | 2 +- 5 files changed, 29 insertions(+), 8 deletions(-) A commit in branch 2024Q4 references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=3b4fdc63688f62f9776340778ad107e0a44ebf40 commit 3b4fdc63688f62f9776340778ad107e0a44ebf40 Author: Ralf van der Enden <tremere@cainites.net> AuthorDate: 2024-10-09 20:23:26 +0000 Commit: Vladimir Druzenko <vvd@FreeBSD.org> CommitDate: 2024-10-09 20:33:42 +0000 dns/powerdns-recursor: Update 5.1.1 → 5.1.2 (fix CVE-2024-25590) PowerDNS Recursor Security Advisory 2024-04: An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service. CVSS Score: 7.5 https://blog.powerdns.com/2024/10/03/powerdns-recursor-4-9-9-5-0-9-5-1-2-released PR: 281914 MFH: 2024Q4 (cherry picked from commit 7386c2ffd587aad5d720f2c117827d30bf844e3d) dns/powerdns-recursor/Makefile | 6 ++---- dns/powerdns-recursor/distinfo | 6 +++--- .../files/{pdns-recursor.in => pdns_recursor.in} | 8 ++++++++ dns/powerdns-recursor/files/pkg-message.in | 15 +++++++++++++++ dns/powerdns-recursor/pkg-plist | 2 +- 5 files changed, 29 insertions(+), 8 deletions(-) Thanks. |
