Security Information / 2023 / Security Information -- DSA-5441-1 maradns

Debian Security Advisory

DSA-5441-1 maradns -- security update

Date Reported:

29 Jun 2023

Affected Packages:

maradns

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 1033252, Bug 1035936.
In Mitre's CVE dictionary: CVE-2022-30256, CVE-2023-31137.

More information:

Two vulnerbilities were found in maradns, an open source domain name system (DNS) implementation, that may lead to denial of service and unintended domain name resolution.

For the oldstable distribution (bullseye), these problems have been fixed in version 2.0.13-1.4+deb11u1.

We recommend that you upgrade your maradns packages.

For the detailed security status of maradns please refer to its security tracker page at: https://security-tracker.debian.org/tracker/maradns