Update to 4.3.2
This update contains a security fix for CVE-2020-14196.
The issue is:
CVE-2020-14196: An issue has been found in PowerDNS Recursor where the ACL applied to the internal web server via webserver-allow-from is not properly enforced, allowing a remote attacker to send HTTP queries to the internal web server, bypassing the restriction.
In the default configuration the API webserver is not enabled. Only installations using a non-default value for webserver and webserver-address are affected.
As usual, there were also other smaller enhancements and bugfixes. In particular, the 4.3.2 release contains fixes that allow long CNAME chains to resolve properly, where previously they could fail if qname minimization is enabled.
Submitted by: Ralf van der Enden <firstname.lastname@example.org> (maintainer)
Sponsored by: Netzkommune GmbH
Approved by: ports-secteam (with hat)