SUSE Package Hub - openSUSE-2025-250

Update Info

openSUSE-2025-250

Security update for pdns-recursor

Type: security

Severity: important

Issued: 2025-07-10

Description:

This update for pdns-recursor fixes the following issues:

- update to 5.1.3:
  * Implement rfc6303 special zones (mostly v6 reverse mappings)
  * Distinguish OS imposed limits from app imposed limits,
    specifically on chains.

- update to 5.1.2 (boo#1231292 CVE-2024-25590)
  https://doc.powerdns.com/recursor/changelog/5.1.html#change-5.1.2

- update to 5.1.1
  https://doc.powerdns.com/recursor/changelog/5.1.html#change-5.1.1
  https://doc.powerdns.com/recursor/changelog/5.0.html#change-5.0.8

- update to 5.0.5:
  * Do not count RRSIGs using unsupported algorithms toward RRSIGs
    limit
  * Correctly count NSEC3s considered when chasing the closest
    encloser.
  * Let NetmaskGroup parse dont-throttle-netmasks, allowing
    negations.
  * Fix types of two YAML settings (incoming.edns_padding_from,
    incoming.proxy_protocol_from) that should be sequences of
    subnets
  * Fix trace=fail regression and add regression test for it

References

Packages

pdns-recursor-5.1.3-bp157.2.3.1