CVE-2020-10030 (https://nvd.nist.gov/vuln/detail/CVE-2020-10030): An attacker with enough privileges to change the hostname might be able to disclose uninitialized memory. CVE-2020-12244 (https://nvd.nist.gov/vuln/detail/CVE-2020-12244): Records in the answer section of a NXDOMAIN response lacking an SOA were not properly validated. CVE-2020-10995 (https://nvd.nist.gov/vuln/detail/CVE-2020-10995): An issue in the DNS protocol has been found that allows malicious parties to use recursive DNS services to attack third party authoritative name servers.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=1d2b4d675227f5595d039468111f21c5de183720 commit 1d2b4d675227f5595d039468111f21c5de183720 Author: Sven Wegener <swegener@gentoo.org> AuthorDate: 2020-05-19 22:20:10 +0000 Commit: Sven Wegener <swegener@gentoo.org> CommitDate: 2020-05-19 22:20:16 +0000 net-dns/pdns-recursor: Version bump, security bug #723986 Bug: https://bugs.gentoo.org/723986 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Sven Wegener <swegener@gentoo.org> net-dns/pdns-recursor/Manifest | 1 + net-dns/pdns-recursor/pdns-recursor-4.3.1.ebuild | 78 ++++++++++++++++++++++++ 2 files changed, 79 insertions(+)
@maintainer(s): Thanks! Let us know when ready for stabilisation, please.
2.3.1 looks good to me for stabilization. For completeness: CVE-2020-10030 also affects net-dns/pdns, but based on the conditions it doesn't affect the arches both packages are keyworded on.
(In reply to Sven Wegener from comment #3) > 2.3.1 looks good to me for stabilization. > > For completeness: CVE-2020-10030 also affects net-dns/pdns, but based on the > conditions it doesn't affect the arches both packages are keyworded on. Thanks! :)
amd64 stable
x86 stable
@maintainer(s), please cleanup
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=38a9eb2394ab521f7bc044464b59ce840ac5bbf6 commit 38a9eb2394ab521f7bc044464b59ce840ac5bbf6 Author: Sven Wegener <swegener@gentoo.org> AuthorDate: 2020-05-30 09:52:24 +0000 Commit: Sven Wegener <swegener@gentoo.org> CommitDate: 2020-05-30 09:53:25 +0000 net-dns/pdns-recursor: Cleanup Bug: https://bugs.gentoo.org/723986 Package-Manager: Portage-2.3.99, Repoman-2.3.22 Signed-off-by: Sven Wegener <swegener@gentoo.org> net-dns/pdns-recursor/Manifest | 5 -- net-dns/pdns-recursor/files/pdns-recursor-r1 | 37 ---------- net-dns/pdns-recursor/pdns-recursor-4.1.14.ebuild | 79 ---------------------- net-dns/pdns-recursor/pdns-recursor-4.1.15.ebuild | 79 ---------------------- net-dns/pdns-recursor/pdns-recursor-4.2.0.ebuild | 78 --------------------- net-dns/pdns-recursor/pdns-recursor-4.2.1.ebuild | 78 --------------------- .../pdns-recursor/pdns-recursor-4.3.0-r1.ebuild | 78 --------------------- 7 files changed, 434 deletions(-)
Thanks.