FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-04-09 10:36:35 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
b3948bf3-685e-11f0-bff5-6805ca2fa271	powerdns-recursor -- cache pollution PowerDNS Team reports: An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of success higher than non-ECS enabled queries. The updated version include various mitigations against spoofing attempts of ECS enabled queries by chaining ECS enabled requests and enforcing stricter validation of the received answers. The most strict mitigation done when the new setting outgoing.edns_subnet_harden (old style name edns-subnet-harden) is enabled. Discovery 2025-07-21 Entry 2025-07-24 powerdns-recursor < 5.2.4 CVE-2025-30192 https://nvd.nist.gov/vuln/detail/CVE-2025-30192
67793feb-0b5b-11f1-a1c0-0050569f0b83	powerdns-recursor -- Denial of Service PowerDNS Team reports: 2025-07: Internal logic flaw in cache management can lead to a denial of service in Recursor 2025-08: Insufficient validation of incoming notifies over TCP can lead to a denial of service in Recursor 2026-01: Crafted zones can lead to increased resource usage in Recursor 2026-01: This problem can be triggered by publishing and querying a crafted zone that causes large memory usage. Discovery 2025-12-08 Entry 2026-02-16 powerdns-recursor < 5.3.5 CVE-2025-59029 CVE-2025-59030 CVE-2026-24027 CVE-2026-0398 https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-07.html https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-08.html https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-01.html

VuXML ID

Description

b3948bf3-685e-11f0-bff5-6805ca2fa271

powerdns-recursor -- cache pollution

PowerDNS Team reports:

An attacker spoofing answers to ECS enabled requests sent out by the Recursor has a chance of success higher than non-ECS enabled queries. The updated version include various mitigations against spoofing attempts of ECS enabled queries by chaining ECS enabled requests and enforcing stricter validation of the received answers. The most strict mitigation done when the new setting outgoing.edns_subnet_harden (old style name edns-subnet-harden) is enabled.

Discovery 2025-07-21
Entry 2025-07-24
powerdns-recursor

< 5.2.4

CVE-2025-30192
https://nvd.nist.gov/vuln/detail/CVE-2025-30192

67793feb-0b5b-11f1-a1c0-0050569f0b83

powerdns-recursor -- Denial of Service

PowerDNS Team reports:

2025-07: Internal logic flaw in cache management can lead to a denial of service in Recursor

2025-08: Insufficient validation of incoming notifies over TCP can lead to a denial of service in Recursor

2026-01: Crafted zones can lead to increased resource usage in Recursor

2026-01: This problem can be triggered by publishing and querying a crafted zone that causes large memory usage.

Discovery 2025-12-08
Entry 2026-02-16
powerdns-recursor

< 5.3.5

CVE-2025-59029
CVE-2025-59030
CVE-2026-24027
CVE-2026-0398
https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-07.html
https://doc.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-08.html
https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2026-01.html