Security update for pdns SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:1660-1 Final 1 1 2018-06-12T13:46:17Z current 2018-06-12T13:46:17Z 2018-06-12T13:46:17Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for pdns This update for pdns fixes the following issues: Security issues fixed: - CVE-2018-1046: Fix an issue with replaying a specially crafted PCAP file that can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution (bsc#1092540). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). HPE-Helion-OpenStack-8-2018-1127,SUSE-OpenStack-Cloud-8-2018-1127 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20181660-1/ Link for SUSE-SU-2018:1660-1 https://lists.suse.com/pipermail/sle-security-updates/2018-June/004184.html E-Mail link for SUSE-SU-2018:1660-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1092540 SUSE Bug 1092540 https://www.suse.com/security/cve/CVE-2018-1046/ SUSE CVE CVE-2018-1046 page HPE Helion OpenStack 8 SUSE OpenStack Cloud 8 pdns-4.1.2-3.3.1 pdns-backend-mysql-4.1.2-3.3.1 pdns-4.1.2-3.3.1 as a component of HPE Helion OpenStack 8 pdns-backend-mysql-4.1.2-3.3.1 as a component of HPE Helion OpenStack 8 pdns-4.1.2-3.3.1 as a component of SUSE OpenStack Cloud 8 pdns-backend-mysql-4.1.2-3.3.1 as a component of SUSE OpenStack Cloud 8 pdns before version 4.1.2 is vulnerable to a buffer overflow in dnsreplay. In the dnsreplay tool provided with PowerDNS Authoritative, replaying a specially crafted PCAP file can trigger a stack-based buffer overflow, leading to a crash and potentially arbitrary code execution. This buffer overflow only occurs when the -ecs-stamp option of dnsreplay is used. CVE-2018-1046 HPE Helion OpenStack 8:pdns-4.1.2-3.3.1 HPE Helion OpenStack 8:pdns-backend-mysql-4.1.2-3.3.1 SUSE OpenStack Cloud 8:pdns-4.1.2-3.3.1 SUSE OpenStack Cloud 8:pdns-backend-mysql-4.1.2-3.3.1 moderate 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20181660-1/ https://www.suse.com/security/cve/CVE-2018-1046.html CVE-2018-1046 https://bugzilla.suse.com/1092540 SUSE Bug 1092540