From 42442f9378144a714ae379567bc9508c0bbb4c7d Mon Sep 17 00:00:00 2001 From: Pieter Lexis Date: Mon, 2 Nov 2015 10:24:15 +0100 Subject: [PATCH] PowerDNS Security Announcement 2015-03 --- .../security/powerdns-advisory-2015-03.md | 32 +++++++++++++++++++ docs/mkdocs.yml | 1 + 2 files changed, 33 insertions(+) create mode 100644 docs/markdown/security/powerdns-advisory-2015-03.md diff --git a/docs/markdown/security/powerdns-advisory-2015-03.md b/docs/markdown/security/powerdns-advisory-2015-03.md new file mode 100644 index 000000000..e21d50a8d --- /dev/null +++ b/docs/markdown/security/powerdns-advisory-2015-03.md @@ -0,0 +1,32 @@ +## PowerDNS Security Advisory 2015-03: Packet parsing bug can lead to crashes + +* CVE: CVE-2015-5311 +* Date: November 9th 2015 +* Credit: Christian Hofstaedtler +* Affects: PowerDNS Authoritative Server 3.4.4 through 3.4.6 +* Not affected: PowerDNS Authoritative Server 3.3.x and 3.4.7 and up +* Severity: High +* Impact: Degraded service or Denial of service +* Exploit: This problem can be triggered by sending specially crafted query packets +* Risk of system compromise: No +* Solution: Upgrade to a non-affected version +* Workaround: run the process inside the guardian or inside a supervisor + +A bug was found using `afl-fuzz` in our packet parsing code. This bug, when +exploited, causes an assertion error and consequent termination of the the +`pdns_server` process, causing a Denial of Service. + +When the PowerDNS Authoritative Server is run inside the guardian (`--guardian`), +or inside a supervisor like supervisord or systemd, it will be automatically +restarted, limiting the impact to a somewhat degraded service. + +PowerDNS Authoritative Server 3.4.4 - 3.4.6 are affected. No other versions are +affected. The PowerDNS Recursor is not affected. + +[PowerDNS Authoritative Server 3.4.7](../changelog.md#powerdns-authoritative-server-347) +contains a fix to this issue. A minimal patch is [available here](https://downloads.powerdns.com/patches/2015-03/). + +This issue is unrelated to the issues in our previous two Security Announcements +([2015-01](powerdns-advisory-2015-01.md) and [2015-02](powerdns-advisory-2015-02.md)). + +We'd like to thank Christian Hofstaedtler of Deduktiva GmbH for finding and reporting this issue. diff --git a/docs/mkdocs.yml b/docs/mkdocs.yml index a7d1572c0..d7b4ef3d9 100644 --- a/docs/mkdocs.yml +++ b/docs/mkdocs.yml @@ -67,6 +67,7 @@ pages: - List of Settings: recursor/settings.md - Security: - Security Policy: security/index.md + - Advisory 2015-03: security/powerdns-advisory-2015-03.md - Advisory 2015-02: security/powerdns-advisory-2015-02.md - Advisory 2015-01: security/powerdns-advisory-2015-01.md - Advisory 2014-02: security/powerdns-advisory-2014-02.md -- 2.40.0