Candidate: CVE-2017-15094
PublicDate: 2018-01-23 15:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15094
 https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2017-07.html
 https://downloads.powerdns.com/patches/2017-07/
Description:
 An issue has been found in the DNSSEC parsing code of PowerDNS Recursor
 from 4.0.0 up to and including 4.0.6 leading to a memory leak when parsing
 specially crafted DNSSEC ECDSA keys. These keys are only parsed when
 validation is enabled by setting dnssec to a value other than off or
 process-no-validate (default).
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H [5.9 MEDIUM]


Patches_pdns-recursor:
upstream_pdns-recursor: released (4.0.7-1)
precise/esm_pdns-recursor: DNE
trusty_pdns-recursor: not-affected (code not present)
trusty/esm_pdns-recursor: DNE (trusty was not-affected [code not present])
xenial_pdns-recursor: ignored (end of standard support, was needed)
zesty_pdns-recursor: ignored (reached end-of-life)
artful_pdns-recursor: ignored (reached end-of-life)
bionic_pdns-recursor: not-affected (4.1.1-2)
cosmic_pdns-recursor: not-affected (4.1.1-2)
disco_pdns-recursor: not-affected (4.1.1-2)
eoan_pdns-recursor: not-affected (4.1.1-2)
focal_pdns-recursor: not-affected (4.1.1-2)
groovy_pdns-recursor: not-affected (4.1.1-2)
hirsute_pdns-recursor: not-affected (4.1.1-2)
impish_pdns-recursor: not-affected (4.1.1-2)
jammy_pdns-recursor: not-affected (4.1.1-2)
devel_pdns-recursor: not-affected (4.1.1-2)