FreeBSD : powerdns-recursor -- multiple vulnerabilities (40d92cc5-1e2b-11e9-bef6-6805ca2fa271)

critical Nessus Plugin ID 121427

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

PowerDNS Team reports :

CVE-2019-3806: An issue has been found in PowerDNS Recursor where Lua hooks are not properly applied to queries received over TCP in some specific combination of settings, possibly bypassing security policies enforced using Lua.

When the recursor is configured to run with more than one thread (threads=X) and to do the distribution of incoming queries to the worker threads itself (pdns-distributes-queries=yes), the Lua script is not properly loaded in the thread handling incoming TCP queries, causing the Lua hooks to not be properly applied.

CVE-2019-3807: An issue has been found in PowerDNS Recursor where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.

Solution

Update the affected package.

See Also

https://doc.powerdns.com/recursor/changelog/4.1.html

http://www.nessus.org/u?f29c0b38

Plugin Details

Severity: Critical

ID: 121427

File Name: freebsd_pkg_40d92cc51e2b11e9bef66805ca2fa271.nasl

Version: 1.5

Type: local

Published: 1/29/2019

Updated: 6/25/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2019-3806

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS Score Source: CVE-2019-3807

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:powerdns-recursor, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Ease: No known exploits are available

Patch Publication Date: 1/22/2019

Vulnerability Publication Date: 1/21/2019

Reference Information

CVE: CVE-2019-3806, CVE-2019-3807