[Pdns-dev] PowerDNS Recursor 4.1.9 Released
remi.gacogne at powerdns.com
Mon Jan 21 14:14:37 UTC 2019
We are very happy to announce the 4.1.9 release of the PowerDNS
Recursor. This release is fixing two security issues, and addressing a
shortcoming in the way incoming queries are distributed to threads under
This release fixes the following security issues:
- PowerDNS Security Advisory 2019-01  (CVE-2019-3806): Lua hooks are
not called over TCP
- PowerDNS Security Advisory 2019-02  (CVE-2019-3807): DNSSEC
validation is not performed for AA=0 responses
These issues respectively affect PowerDNS Recursor from 4.1.4 and 4.1.0,
up to and including 4.1.8. PowerDNS Recursor 4.0.x and below are not
Minimal patches are available at  and .
The changelog :
- #7397: Load the Lua script in the distributor thread, check signature
for AA=0 answers (CVE-2019-3806, CVE-2019-3807)
- #7377: Try another worker before failing if the first pipe was full
The tarball  (signature ) is available at
https://downloads.powerdns.com/releases/ and packages for CentOS 6 and
7, Debian Jessie and Stretch, Ubuntu Bionic, Trusty and Xenial are
available from https://repo.powerdns.com/.
Please send us all feedback and issues you might have via the mailing
list , or in case of a bug, via GitHub .
PowerDNS.COM BV - https://www.powerdns.com/
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 488 bytes
Desc: OpenPGP digital signature
More information about the Pdns-dev