CVE-2026-42387

Description

A malicious authoritative server can send a crafted zone via the ZoneToCache function that leads to a crash of the Recursor due to insuffcient input validation.

References

• https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-powerdns-2026-08.html