Summary: PowerDNS has released an emergency update for DNSdist version 1.9.9 to address a critical security vulnerability (CVE-2025-30194) that allows remote, unauthenticated attackers to launch a denial of service attack. Users are encouraged to upgrade to this new version, and a temporary workaround is available by switching to the h2o provider. Further details, including the release tarball and related documentation, can be found on the DNSdist website.
Affected: PowerDNS DNSdist
Keypoints :
- Emergency release of DNSdist 1.9.9 to fix CVE-2025-30194.
- Vulnerability allows remote denial of service via crafted DNS over HTTPS.
- Upgrade is advised, with a temporary workaround available by switching to the h2o provider.
Source: https://blog.powerdns.com/2025/04/29/powerdns-dnsdist-1.9.9-released