Critical PowerDNS Recursor Vulnerabilities Lead to Denial of Service Risks

Critical PowerDNS Recursor Vulnerabilities Lead to Denial of Service Risks

First seen 13 Apr 2026, 05:45 UTC Linuxsecurity 89% similarity 70.5

Article Content

Browse articles
ThreatCluster

PowerDNS Recursor, a non-authoritative DNS server, has been updated to address multiple security vulnerabilities. The update includes fixes for CVE-2025-59030, which allows for denial of service due to insufficient validation of incoming notifies over TCP, and CVE-2025-59029, which can cause assertion failures due to crafted DNS records. These vulnerabilities affect users of PowerDNS Recursor versions prior to 5.2.8-1. The vulnerabilities were published on December 9, 2025, and July 21, 2025, respectively. Users are advised to upgrade to the latest version using the 'dnf' update program. The updates were released on April 3, 2026, and are critical for maintaining network security. Failure to apply these updates may expose systems to potential denial of service attacks.

Key Points: • PowerDNS Recursor vulnerabilities could lead to denial of service attacks. • CVE-2025-59030 and CVE-2025-59029 are critical issues addressed in the latest update. • Users must upgrade to version 5.2.8-1 to mitigate these risks.

ThreatCluster AI

Timeline

2025-07-21
CVE-2025-30192 published
2025-12-09
CVE-2025-59030 and CVE-2025-59029 published
2026-04-03
PowerDNS Recursor updated to fix multiple vulnerabilities

Community

Browse all →