CVE-2015-1868 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2015-1868 Interim 1 10 2025-04-15T23:40:50Z current 2021-05-30T13:28:08Z 2025-04-15T23:40:50Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2015-1868 The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Tumbleweed pdns-4.0.1-1.2 pdns-backend-geoip-4.0.1-1.2 pdns-backend-godbc-4.0.1-1.2 pdns-backend-ldap-4.0.1-1.2 pdns-backend-lua-4.0.1-1.2 pdns-backend-mydns-4.0.1-1.2 pdns-backend-mysql-4.0.1-1.2 pdns-backend-postgresql-4.0.1-1.2 pdns-backend-remote-4.0.1-1.2 pdns-backend-sqlite3-4.0.1-1.2 pdns-recursor-4.0.3-1.2 pdns-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-geoip-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-godbc-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-ldap-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-lua-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-mydns-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-mysql-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-postgresql-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-remote-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-backend-sqlite3-4.0.1-1.2 as a component of openSUSE Tumbleweed pdns-recursor-4.0.3-1.2 as a component of openSUSE Tumbleweed The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows remote attackers to cause a denial of service (CPU consumption or crash) via a request with a name that refers to itself. CVE-2015-1868 openSUSE Tumbleweed:pdns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-geoip-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-godbc-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-ldap-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-lua-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mydns-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-mysql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-postgresql-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-remote-4.0.1-1.2 openSUSE Tumbleweed:pdns-backend-sqlite3-4.0.1-1.2 openSUSE Tumbleweed:pdns-recursor-4.0.3-1.2 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C