VulnerableCode Package Details - pkg:deb/debian/pdns@4.4.0-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-ez68-8ben-nuef	An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can trigger a race condition leading to a crash, or possibly arbitrary code execution, by sending crafted queries with a GSS-TSIG signature.	CVE-2020-24696
VCID-qbnt-a5xe-2bg6	An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can cause a denial of service by sending crafted queries with a GSS-TSIG signature.	CVE-2020-24697
VCID-zcxy-ae2g-3kdy	An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker might be able to cause a double-free, leading to a crash or possibly arbitrary code execution. by sending crafted queries with a GSS-TSIG signature.	CVE-2020-24698

Vulnerability

Summary

Aliases

VCID-ez68-8ben-nuef

An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can trigger a race condition leading to a crash, or possibly arbitrary code execution, by sending crafted queries with a GSS-TSIG signature.

CVE-2020-24696

VCID-qbnt-a5xe-2bg6

An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker can cause a denial of service by sending crafted queries with a GSS-TSIG signature.

CVE-2020-24697

VCID-zcxy-ae2g-3kdy

An issue was discovered in PowerDNS Authoritative through 4.3.0 when --enable-experimental-gss-tsig is used. A remote, unauthenticated attacker might be able to cause a double-free, leading to a crash or possibly arbitrary code execution. by sending crafted queries with a GSS-TSIG signature.

CVE-2020-24698

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-02T03:26:32.145866+00:00	Debian Importer	Fixing	VCID-zcxy-ae2g-3kdy	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-02T01:59:17.765576+00:00	Debian Importer	Fixing	VCID-qbnt-a5xe-2bg6	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-05-02T01:42:39.080511+00:00	Debian Importer	Fixing	VCID-ez68-8ben-nuef	https://security-tracker.debian.org/tracker/data/json	38.6.0
2026-04-16T12:37:11.703625+00:00	Debian Importer	Fixing	VCID-qbnt-a5xe-2bg6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:20:00.938469+00:00	Debian Importer	Fixing	VCID-zcxy-ae2g-3kdy	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:21:59.235241+00:00	Debian Importer	Fixing	VCID-ez68-8ben-nuef	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:38:45.461767+00:00	Debian Importer	Fixing	VCID-qbnt-a5xe-2bg6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:42:47.924180+00:00	Debian Importer	Fixing	VCID-zcxy-ae2g-3kdy	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:58:57.742767+00:00	Debian Importer	Fixing	VCID-ez68-8ben-nuef	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:49:28.566242+00:00	Debian Importer	Fixing	VCID-zcxy-ae2g-3kdy	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:49:28.526255+00:00	Debian Importer	Fixing	VCID-qbnt-a5xe-2bg6	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:49:28.486425+00:00	Debian Importer	Fixing	VCID-ez68-8ben-nuef	https://security-tracker.debian.org/tracker/data/json	38.1.0