Christian Hofstaedtler uploaded new packages for pdns and
pdns-server which fixed the following security problem:

CVE-2015-1868: The label decompression functionality in PowerDNS
Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and
Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x
before 3.4.4 allows remote attackers to cause a denial of service
(CPU consumption or crash) via a request with a name that refers to
itself.

For the wheezy-backports distribution the problems have been fixed
in pdns version 3.4.1-4+deb8u1~bpo70+1, and in pdns-recursor
version 3.6.2-2+deb8u1~bpo70+1.