Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 744160 (CVE-2020-17482) - <net-dns/pdns-4.3.1: Leaking uninitialised memory through crafted zone records (CVE-2020-17482)
Summary: <net-dns/pdns-4.3.1: Leaking uninitialised memory through crafted zone record...
Status: RESOLVED FIXED
Alias: CVE-2020-17482
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL: https://doc.powerdns.com/authoritativ...
Whiteboard: B4 [glsa+ cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2020-09-22 21:08 UTC by Sven Wegener
Modified: 2020-12-23 20:21 UTC (History)
2 users (show)

See Also:
Package list:
net-dns/pdns-4.3.1
Runtime testing required: ---
nattka: sanity-check+


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Sven Wegener gentoo-dev 2020-09-22 21:08:29 UTC
From $URL:

CVE: CVE-2020-17482
Date: September 22nd, 2020
Affects: PowerDNS Authoritative 4.3.0 and earlier
Not affected: 4.3.1 and up, 4.2.3 and up, 4.1.14 and up
Severity: Low
Impact: Information leak
Exploit: This problem can be triggered via crafted records by an authorized user
Risk of system compromise: Low
Solution: Upgrade to a fixed version
Workaround: Do not take zone data from untrusted users
An issue has been found in PowerDNS Authoritative Server before 4.3.1 where an authorized user with the ability to insert crafted records into a zone might be able to leak the content of uninitialized memory. Such a user could be a customer inserting data via a control panel, or somebody with access to the REST API. Crafted records cannot be inserted via AXFR.

This issue has been assigned CVE-2020-17482.
Comment 1 Sam James archtester gentoo-dev Security 2020-09-22 21:23:49 UTC
Thanks for reporting this. Let us know when in tree.
Comment 2 Larry the Git Cow gentoo-dev 2020-09-22 21:55:50 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a10a8c9b9cf7396ae282c36a8c87880aa0952336

commit a10a8c9b9cf7396ae282c36a8c87880aa0952336
Author:     Sven Wegener <swegener@gentoo.org>
AuthorDate: 2020-09-22 21:22:23 +0000
Commit:     Sven Wegener <swegener@gentoo.org>
CommitDate: 2020-09-22 21:42:03 +0000

    net-dns/pdns: Version bump to 4.3.1, security bug #744160
    
    Bug: https://bugs.gentoo.org/744160
    Package-Manager: Portage-3.0.4, Repoman-3.0.1
    Signed-off-by: Sven Wegener <swegener@gentoo.org>

 net-dns/pdns/Manifest          |   1 +
 net-dns/pdns/pdns-4.3.1.ebuild | 170 +++++++++++++++++++++++++++++++++++++++++
 2 files changed, 171 insertions(+)
Comment 3 John Helmert III (ajak) gentoo-dev Security 2020-09-23 03:23:09 UTC
Please let us know when ready to stable.
Comment 4 Sven Wegener gentoo-dev 2020-09-25 20:44:12 UTC
4.3.1 is ready for stabilization
Comment 5 Sam James archtester gentoo-dev Security 2020-09-25 20:45:24 UTC
(In reply to Sven Wegener from comment #4)
> 4.3.1 is ready for stabilization

Thanks Sven!
Comment 6 Larry the Git Cow gentoo-dev 2020-09-30 20:46:17 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c362518144814fec57270cbc2282cc482c6e336d

commit c362518144814fec57270cbc2282cc482c6e336d
Author:     Sven Wegener <swegener@gentoo.org>
AuthorDate: 2020-09-30 20:45:42 +0000
Commit:     Sven Wegener <swegener@gentoo.org>
CommitDate: 2020-09-30 20:45:49 +0000

    net-dns/pdns: 4.3.1 stable on amd/x86, security bug #744160
    
    Bug: https://bugs.gentoo.org/744160
    Package-Manager: Portage-3.0.4, Repoman-3.0.1
    Signed-off-by: Sven Wegener <swegener@gentoo.org>

 net-dns/pdns/pdns-4.3.1.ebuild | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
Comment 7 Sam James archtester gentoo-dev Security 2020-09-30 20:54:32 UTC
Thank you! Please cleanup.
Comment 8 Larry the Git Cow gentoo-dev 2020-10-03 11:05:30 UTC
The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6842082c6e057977fed0d94e3d444beb8993205f

commit 6842082c6e057977fed0d94e3d444beb8993205f
Author:     Sven Wegener <swegener@gentoo.org>
AuthorDate: 2020-10-03 11:02:48 +0000
Commit:     Sven Wegener <swegener@gentoo.org>
CommitDate: 2020-10-03 11:03:53 +0000

    net-dns/pdns: Cleanup
    
    Bug: https://bugs.gentoo.org/744160
    Package-Manager: Portage-3.0.4, Repoman-3.0.1
    Signed-off-by: Sven Wegener <swegener@gentoo.org>

 net-dns/pdns/Manifest          |   1 -
 net-dns/pdns/pdns-4.3.0.ebuild | 170 -----------------------------------------
 2 files changed, 171 deletions(-)
Comment 9 Thomas Deutschmann gentoo-dev Security 2020-12-23 16:30:31 UTC
GLSA Vote: Yes

New GLSA request filed.
Comment 10 GLSAMaker/CVETool Bot gentoo-dev 2020-12-23 20:21:57 UTC
This issue was resolved and addressed in
 GLSA 202012-18 at https://security.gentoo.org/glsa/202012-18
by GLSA coordinator Thomas Deutschmann (whissi).