CVE-2024-25590 – Crafted responses can lead to a denial of service due to cache inefficiencies in the Recursor

https://notcve.org/view.php?id=CVE-2024-25590

03 Oct 2024 — An attacker can publish a zone containing specific Resource Record Sets. Repeatedly processing and caching results for these sets can lead to a denial of service. Toshifumi Sakaguchi discovered that too permissive parsing of some resource record sets in the zone file parsing of PDNS Recursor could result in denial of service. • https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-04.html • CWE-20: Improper Input Validation •