PowerDNS has released DNSdist version 1.9.9 as an emergency security update to address CVE-2025-30194, a critical vulnerability allowing remote, unauthenticated attackers to trigger a denial-of-service (DoS) via a crafted DNS over HTTPS (DoH) connection. The issue was disclosed through PowerDNS’s public GitHub tracker. While users are urged to upgrade immediately, a temporary workaround is to switch to the H2O provider until the patch can be applied. Updated packages and the signed release tarball are available via the official PowerDNS downloads and repository.

‍