Headline
CVE-2022-30256: a small open-source DNS server
An issue was discovered in MaraDNS Deadwood through 3.5.0021 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would be widespread and highly impactful, because the exploitation conforms to de facto DNS specifications and operational practices, and overcomes current mitigation patches for “Ghost” domain names.
Support MaraDNS or listen to my music
What is MaraDNS?
MaraDNS is a free open-source computer program written by Sam Trenholme.
MaraDNS implements the Domain Name System (DNS), an essential internet service. MaraDNS is open source software: This means that anyone is free to download, use, and modify the program free of charge, as per its license.
People like MaraDNS because it’s small, lightweight, easy to set up, and remarkably secure. It’s also cross platform — the program runs both in Windows and in UNIX clones.
More information describing MaraDNS is on the overview and summary page.
Current status
The most recent stable version of MaraDNS is MaraDNS 3.5.0028, made on November 17 2022.
Development of MaraDNS is now done in Git; the up to date Git tree is available for checkout at Github, Gitlab, Bitbucket, Codeberg, and Sourcehut. Please file all bug reports at Github, using the discussions tab.
Support
GitHub hosts the MaraDNS support forum. Click (or tap) here to access MaraDNS support; be sure to have a GitHub account.
Mailing list archives
There used to be a mailing list which provided MaraDNS support and updates. This mailing list is no longer active, but archives are available:
- 2007-2019 archives
- Third party archive (2002-2018)
- I have archives from 2001 in two files: 2001 archive #1 and 2001 archive #2
Other DNS servers
Here is a list of some other DNS software out there.
Related news
Ubuntu Security Notice 6271-1 - Xiang Li discovered that MaraDNS incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to obtain sensitive information. Huascar Tejeda discovered that MaraDNS incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service.
Debian Linux Security Advisory 5441-1 - Two vulnerabilities were found in maradns, an open source domain name system (DNS) implementation, that may lead to denial of service and unintended domain name resolution.