Oval Definition:oval:org.opensuse.security:def:202025829
Revision Date:2022-06-30Version:1
Title:CVE-2020-25829
Description:

An issue has been found in PowerDNS Recursor before 4.1.18, 4.2.x before 4.2.5, and 4.3.x before 4.3.5. A remote attacker can cause the cached records for a given name to be updated to the Bogus DNSSEC validation state, instead of their actual DNSSEC Secure state, via a DNS ANY query. This results in a denial of service for installation that always validate (dnssec=validate), and for clients requesting validation when on-demand validation is enabled (dnssec=process).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2020-25829
openSUSE-SU-2020:1687-1
Mitre CVE-2020-25829
SUSE CVE-2020-25829
openSUSE-SU-2020:1687-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12 SP1
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.0
SUSE Manager Proxy 4.1
SUSE Manager Server 4.0
SUSE Manager Server 4.1
SUSE Package Hub for SUSE Linux Enterprise 12 SP1
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • pdns-recursor-4.1.12-lp151.3.9 is installed
  • AND pdns-recursor is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • pdns-recursor-4.3.5-lp152.2.6.1 is installed
  • AND pdns-recursor is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed
  • AND pdns-recursor-4.1.18-25 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND pdns-recursor-4.5.5-1.3 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND pdns-recursor-4.1.12-bp151.4.9.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed
  • AND pdns-recursor-4.3.5-bp152.2.12.1 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed
  • AND pdns-recursor-4.1.18-25.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed
  • AND pdns-recursor-4.3.5-bp152.2.12.1 is installed
  • OR Package Information
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND pdns-recursor-4.1.12-bp151.4.9.1 is installed
    • BACK