Home / mailings [SECURITY] [DSA 6367-1] dnsdist security update
Posted on 25 June 2026
Debian Security Advisory- -------------------------------------------------------------------------
Debian Security Advisory DSA-6367-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 25, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : dnsdist
CVE ID : CVE-2026-40011 CVE-2026-40208 CVE-2026-40209
CVE-2026-40210 CVE-2026-40211 CVE-2026-42004
CVE-2026-42005
Multiple security vulnerabilities were discovered in the dnsdist DNS
loadbalancer, which could result in denial of service, information
disclosure or bypass of security rules.
For the stable distribution (trixie), these problems have been fixed in
version 1.9.15-0+deb13u1.
We recommend that you upgrade your dnsdist packages.
For the detailed security status of dnsdist please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/dnsdist
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
