{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/97699?format=json","vulnerability_id":"VCID-tmg6-gqrq-2uc9","summary":"The label decompression functionality in PowerDNS Recursor before 3.6.4 and 3.7.x before 3.7.3 and Authoritative (Auth) Server before 3.3.3 and 3.4.x before 3.4.5 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a long name that refers to itself.  NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1868.","aliases":[{"alias":"CVE-2015-5470"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4912?format=json","purl":"pkg:deb/debian/pdns@3.4.1-4%2Bdeb8u8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-qg7g-sudd-hue1"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@3.4.1-4%252Bdeb8u8"},{"url":"http://public2.vulnerablecode.io/api/packages/122186?format=json","purl":"pkg:deb/debian/pdns@3.4.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@3.4.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122171?format=json","purl":"pkg:deb/debian/pdns@4.4.1-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3sq8-16v4-yydc"},{"vulnerability":"VCID-bsvk-tw8r-9qe5"},{"vulnerability":"VCID-e1js-9ute-3kf8"},{"vulnerability":"VCID-e5n6-qn1d-nkg7"},{"vulnerability":"VCID-gq3g-suwj-qfc4"},{"vulnerability":"VCID-hvtq-ncfb-p3ck"},{"vulnerability":"VCID-m5vb-nhcv-wka3"},{"vulnerability":"VCID-meum-uqx6-e3bs"},{"vulnerability":"VCID-rs9f-44nz-z3fc"},{"vulnerability":"VCID-u1rs-bywf-zbaf"},{"vulnerability":"VCID-yjx9-kpdu-cfb7"},{"vulnerability":"VCID-zqkm-3evt-pycj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122169?format=json","purl":"pkg:deb/debian/pdns@4.7.3-2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3sq8-16v4-yydc"},{"vulnerability":"VCID-bsvk-tw8r-9qe5"},{"vulnerability":"VCID-e5n6-qn1d-nkg7"},{"vulnerability":"VCID-gq3g-suwj-qfc4"},{"vulnerability":"VCID-hvtq-ncfb-p3ck"},{"vulnerability":"VCID-m5vb-nhcv-wka3"},{"vulnerability":"VCID-meum-uqx6-e3bs"},{"vulnerability":"VCID-rs9f-44nz-z3fc"},{"vulnerability":"VCID-u1rs-bywf-zbaf"},{"vulnerability":"VCID-yjx9-kpdu-cfb7"},{"vulnerability":"VCID-zqkm-3evt-pycj"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.7.3-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122174?format=json","purl":"pkg:deb/debian/pdns@4.9.14-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@4.9.14-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122172?format=json","purl":"pkg:deb/debian/pdns@5.0.5-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@5.0.5-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122173?format=json","purl":"pkg:deb/debian/pdns@5.1.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@5.1.0-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122234?format=json","purl":"pkg:deb/debian/pdns-recursor@3.7.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@3.7.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122217?format=json","purl":"pkg:deb/debian/pdns-recursor@4.4.2-3?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3wzr-2eer-77hf"},{"vulnerability":"VCID-55ew-qe9a-5uen"},{"vulnerability":"VCID-5w5a-jcrh-nyb1"},{"vulnerability":"VCID-6b9g-rn64-8qdm"},{"vulnerability":"VCID-baea-ybbp-fbc3"},{"vulnerability":"VCID-bkjx-b5yp-afg9"},{"vulnerability":"VCID-d5mw-hsbt-u7bj"},{"vulnerability":"VCID-dmn7-brss-q3ck"},{"vulnerability":"VCID-e1js-9ute-3kf8"},{"vulnerability":"VCID-e5n6-qn1d-nkg7"},{"vulnerability":"VCID-jqh9-kg7m-d3dn"},{"vulnerability":"VCID-jt65-9bh8-9bgc"},{"vulnerability":"VCID-me6t-p2ef-43ch"},{"vulnerability":"VCID-rryv-rqx6-53fn"},{"vulnerability":"VCID-rs9f-44nz-z3fc"},{"vulnerability":"VCID-ur4y-xu6a-3qck"},{"vulnerability":"VCID-uzyx-z58g-jkft"},{"vulnerability":"VCID-ww6x-997u-6fhs"},{"vulnerability":"VCID-xas6-wfzz-hbbz"},{"vulnerability":"VCID-xzkz-rsgv-wuaa"},{"vulnerability":"VCID-y53p-jj1w-xqet"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.4.2-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122215?format=json","purl":"pkg:deb/debian/pdns-recursor@4.8.8-1%2Bdeb12u1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3wzr-2eer-77hf"},{"vulnerability":"VCID-6b9g-rn64-8qdm"},{"vulnerability":"VCID-baea-ybbp-fbc3"},{"vulnerability":"VCID-bkjx-b5yp-afg9"},{"vulnerability":"VCID-d5mw-hsbt-u7bj"},{"vulnerability":"VCID-dmn7-brss-q3ck"},{"vulnerability":"VCID-e5n6-qn1d-nkg7"},{"vulnerability":"VCID-jqh9-kg7m-d3dn"},{"vulnerability":"VCID-jt65-9bh8-9bgc"},{"vulnerability":"VCID-rryv-rqx6-53fn"},{"vulnerability":"VCID-rs9f-44nz-z3fc"},{"vulnerability":"VCID-uzyx-z58g-jkft"},{"vulnerability":"VCID-ww6x-997u-6fhs"},{"vulnerability":"VCID-xzkz-rsgv-wuaa"},{"vulnerability":"VCID-y53p-jj1w-xqet"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@4.8.8-1%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122220?format=json","purl":"pkg:deb/debian/pdns-recursor@5.2.9-0%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.2.9-0%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122218?format=json","purl":"pkg:deb/debian/pdns-recursor@5.4.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.4.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/122219?format=json","purl":"pkg:deb/debian/pdns-recursor@5.4.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns-recursor@5.4.2-1%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/4904?format=json","purl":"pkg:deb/debian/pdns@2.9.17-13sarge3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@2.9.17-13sarge3"},{"url":"http://public2.vulnerablecode.io/api/packages/4905?format=json","purl":"pkg:deb/debian/pdns@2.9.20-8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@2.9.20-8"},{"url":"http://public2.vulnerablecode.io/api/packages/4906?format=json","purl":"pkg:deb/debian/pdns@2.9.20-8%2Betch1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@2.9.20-8%252Betch1"},{"url":"http://public2.vulnerablecode.io/api/packages/4907?format=json","purl":"pkg:deb/debian/pdns@2.9.21.2-1%2Blenny1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@2.9.21.2-1%252Blenny1"},{"url":"http://public2.vulnerablecode.io/api/packages/4908?format=json","purl":"pkg:deb/debian/pdns@2.9.22-8%2Bsqueeze1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@2.9.22-8%252Bsqueeze1"},{"url":"http://public2.vulnerablecode.io/api/packages/4909?format=json","purl":"pkg:deb/debian/pdns@3.1-4.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@3.1-4.1"},{"url":"http://public2.vulnerablecode.io/api/packages/4910?format=json","purl":"pkg:deb/debian/pdns@3.3.1-3~bpo70%2B1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@3.3.1-3~bpo70%252B1"},{"url":"http://public2.vulnerablecode.io/api/packages/4911?format=json","purl":"pkg:deb/debian/pdns@3.4.1-4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-gfwm-fnp9-d7e1"},{"vulnerability":"VCID-hp38-vkna-xbbf"},{"vulnerability":"VCID-n5n2-xvth-uqd5"},{"vulnerability":"VCID-n8kr-mt65-13gj"},{"vulnerability":"VCID-pn7j-7cbx-wbhj"},{"vulnerability":"VCID-qg7g-sudd-hue1"},{"vulnerability":"VCID-tmg6-gqrq-2uc9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/pdns@3.4.1-4"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-5470","reference_id":"","reference_type":"","scores":[{"value":"6e-05","scoring_system":"epss","scoring_elements":"0.00478","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-5470"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5470","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5470"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tmg6-gqrq-2uc9"}