CVE-2014-8601

Description

PowerDNS Recursor before 3.6.2 does not limit delegation chaining, which allows remote attackers to cause a denial of service ("performance degradations") via a large or infinite number of referrals, as demonstrated by resolving domains hosted by ezdns.it.

• How can I get the fixes?
• What do statuses mean?

References

• MITRE
• NVD
• Launchpad
• Debian

Other references

• http://doc.powerdns.com/md/security/powerdns-advisory-2014-02/
• http://www.securitytracker.com/id/1031310
• https://www.cve.org/CVERecord?id=CVE-2014-8601