SecuritySpace - CVE-2020-25829

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2020-25829

Description: An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This results in a denial of service for installation that always validate (dnssec=validate), and for clients requesting validation when on-demand validation is enabled (dnssec=process).

Test IDs: 1.3.6.1.4.1.25623.1.0.144824 1.3.6.1.4.1.25623.1.1.10.2020.0393

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-25829
https://security.gentoo.org/glsa/202012-19
SuSE Security Announcement: openSUSE-SU-2020:1687 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00036.html

CVE ID:	CVE-2020-25829
Description:	An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This results in a denial of service for installation that always validate (dnssec=validate), and for clients requesting validation when on-demand validation is enabled (dnssec=process).
Test IDs:	1.3.6.1.4.1.25623.1.0.144824 1.3.6.1.4.1.25623.1.1.10.2020.0393
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2020-25829 https://security.gentoo.org/glsa/202012-19 SuSE Security Announcement: openSUSE-SU-2020:1687 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00036.html