Advisories ยป MGASA-2018-0252

Updated pdns-recursor package fixes security vulnerability

Publication date: 24 May 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-1000003


An issue has been found in the DNSSEC validation component of PowerDNS
Recursor, allowing an ancestor delegation NSEC or NSEC3 record to be
used to wrongfully prove the non-existence of a RR below the owner name
of that record. This would allow an attacker in position of
man-in-the-middle to send a NXDOMAIN answer for a name that does exist