{"affected":[{"ecosystem_specific":{"binaries":[{"pdns":"4.1.2-bp150.2.3.1","pdns-backend-geoip":"4.1.2-bp150.2.3.1","pdns-backend-godbc":"4.1.2-bp150.2.3.1","pdns-backend-ldap":"4.1.2-bp150.2.3.1","pdns-backend-lua":"4.1.2-bp150.2.3.1","pdns-backend-mydns":"4.1.2-bp150.2.3.1","pdns-backend-mysql":"4.1.2-bp150.2.3.1","pdns-backend-postgresql":"4.1.2-bp150.2.3.1","pdns-backend-remote":"4.1.2-bp150.2.3.1","pdns-backend-sqlite3":"4.1.2-bp150.2.3.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15","name":"pdns","purl":"pkg:rpm/suse/pdns&distro=SUSE%20Package%20Hub%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.1.2-bp150.2.3.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for pdns fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2018-10851: Fixed denial of service via crafted zone record or crafted answer (bsc#1114157).\n- CVE-2018-14626: Fixed packet cache pollution via crafted query (bsc#1114169).\n\nThis update was imported from the openSUSE:Leap:15.0:Update update project.","id":"openSUSE-SU-2018:4175-1","modified":"2018-12-18T12:04:47Z","published":"2018-12-18T12:04:47Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5HUOAHEJGZBU2UVFKSCQPX2U267R5ZBE/#5HUOAHEJGZBU2UVFKSCQPX2U267R5ZBE"},{"type":"REPORT","url":"https://bugzilla.suse.com/1114157"},{"type":"REPORT","url":"https://bugzilla.suse.com/1114169"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-10851"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-14626"}],"related":["CVE-2018-10851","CVE-2018-14626"],"summary":"Security update for pdns","upstream":["CVE-2018-10851","CVE-2018-14626"]}