VulnerableCode Package Details - pkg:alpm/archlinux/powerdns-recursor@4.1.9-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/powerdns-recursor@4.1.9-1

purl	pkg:alpm/archlinux/powerdns-recursor@4.1.9-1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-2hee-f8gq-rycf	An issue has been found in PowerDNS Recursor versions 4.1.x before 4.1.9 where records in the answer section of responses received from authoritative servers with the AA flag not set were not properly validated, allowing an attacker to bypass DNSSEC validation.	CVE-2019-3807
VCID-vua1-5kz6-hban	An issue has been found in PowerDNS Recursor versions after 4.1.3 before 4.1.9 where Lua hooks are not properly applied to queries received over TCP in some specific combination of settings, possibly bypassing security policies enforced using Lua.	CVE-2019-3806

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-06T05:35:35.372174+00:00	Arch Linux Importer	Fixing	VCID-vua1-5kz6-hban	https://security.archlinux.org/AVG-856	38.1.0
2026-04-06T05:35:35.348134+00:00	Arch Linux Importer	Fixing	VCID-2hee-f8gq-rycf	https://security.archlinux.org/AVG-856	38.1.0
2026-04-01T18:27:02.997201+00:00	Arch Linux Importer	Fixing	VCID-vua1-5kz6-hban	https://security.archlinux.org/AVG-856	38.0.0
2026-04-01T18:27:02.969035+00:00	Arch Linux Importer	Fixing	VCID-2hee-f8gq-rycf	https://security.archlinux.org/AVG-856	38.0.0