Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
a0a1c8c1 by Moritz Muehlenhoff at 2026-06-25T16:56:18+02:00
new dnsdist issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,33 @@
+CVE-2026-40211
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-40211-denial-of-service-via-crafted-doh3-queries
+CVE-2026-40210
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-40210-out-of-bounds-read-in-setmacaddraction
+CVE-2026-40209
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-40209-denial-of-service-via-ixfr-queries
+CVE-2026-40208
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-40208-denial-of-service-via-doh3-queries
+CVE-2026-42004
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-42004-edns-options-smuggling
+CVE-2026-40011
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-40011-prometheus-denial-of-service-via-crafted-dns-queries
 CVE-2026-52690
        - pdns-recursor <unfixed>
        [bookworm] - pdns-recursor <end-of-life> (see DSA 6045)
@@ -31,10 +61,14 @@ CVE-2026-42005
        - pdns <unfixed>
        [bookworm] - pdns <end-of-life> (See #1119290)
        [bullseye] - pdns <end-of-life> (see DLA 4471)
+       - dnsdist <unfixed>
+       [bookworm] - dnsdist <end-of-life> (See #1119290)
+       [bullseye] - dnsdist <end-of-life> (see #1119290)
        NOTE: 
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-08.html#cve-2026-42005-unbounded-resource-consumption-in-internal-webserver
-       NOTE: Only affects 5.2.x, marking first 5.3 upload as fixed version
+       NOTE: Only affects pdns-rec 5.2.x, marking first 5.3 upload as fixed 
version
        NOTE: 
https://doc.powerdns.com/authoritative/security-advisories/powerdns-advisory-2026-07.html
        NOTE: 
https://github.com/PowerDNS/pdns/commit/11e4f2da8259e5070e7a193f48d23ade38b71dc0
+       NOTE: 
https://www.dnsdist.org/security-advisories/powerdns-advisory-for-dnsdist-2026-09.html#cve-2026-42005-insufficient-input-validation-of-internal-web-server
 CVE-2026-40012
        - pdns-recursor <unfixed>
        [bookworm] - pdns-recursor <end-of-life> (see DSA 6045)


=====================================
data/dsa-needed.txt
=====================================
@@ -21,6 +21,8 @@ containerd
 --
 cups
 --
+dnsdist (jmm)
+--
 dulwich
 --
 erlang



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0a1c8c1ebda8e91dc5552166af0845563851d8c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0a1c8c1ebda8e91dc5552166af0845563851d8c
You're receiving this email because of your account on salsa.debian.org. Manage 
all notifications: https://salsa.debian.org/-/profile/notifications | Help: 
https://salsa.debian.org/help


_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to