Onderwerp: urgent - DNS resolver DoS - Bind, Unbound, PowerDNS

Drie DNS resolvers met hetzelfde issue ....

Bind
Unbound
PowerDNS

Bind :
https://kb.isc.org/article/AA-01216/0
Program Impacted: BIND 9
Versions affected: 9.0.x -> 9.8.x, 9.9.0 -> 9.9.6, 9.10.0 -> 9.10.1
Severity: Critical
Exploitable: Remotely

PowerDNS
http://doc.powerdns.com/md/security/...isory-2014-02/

Affects: PowerDNS Recursor versions 3.6.1 and earlier
Not affected: PowerDNS Recursor 3.6.2; no versions of PowerDNS Authoritative Server
Severity: High
Impact: Degraded service
Exploit: This problem can be triggered by sending queries for specifically configured domains

Unbound 1.5.1 :
http://www.unbound.net/download.html
Fix CVE-2014-8602: denial of service by making resolver chase endless series of delegations.