Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 655318 (CVE-2018-1046) - <net-dns/pdns-4.1.2 - dnsreplay: replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution
Summary: <net-dns/pdns-4.1.2 - dnsreplay: replaying a specially crafted PCAP file can ...
Status: RESOLVED FIXED
Alias: CVE-2018-1046
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://doc.powerdns.com/authoritativ...
Whiteboard: B3 [noglsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2018-05-09 08:47 UTC by Jeroen Roovers (RETIRED)
Modified: 2018-11-23 23:24 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jeroen Roovers (RETIRED) gentoo-dev 2018-05-09 08:47:11 UTC 
== PowerDNS Security Advisory 2018-02: Buffer overflow in dnsreplay ==

An issue has been found in the dnsreplay tool provided with PowerDNS Authoritative, where replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution. This buffer overflow only occurs when the –ecs-stamp option of dnsreplay is used. Regardless of this issue, the use of dnsreplay with untrusted PCAP files is not advised. This issue has been assigned CVE-2018-1046 by Red Hat.

PowerDNS Authoritative from 4.0.0 up to and including 4.1.1 is affected.

We would like to thank Wei Hao for finding and subsequently reporting this issue.
Comment 1 Sven Wegener gentoo-dev 2018-05-12 19:56:44 UTC 
I've committed 4.1.2 to the tree. The 4.1.x series has been in the tree for quite some time now, so 4.1.2 should be ready for stabilization.