Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: GLSA 200804-22:03 Moderate: PowerDNS Recursor DNS Threat

gentoo
Calendar Grey August 21, 2008
Dist Gentoo Esm H88
Upgrade your PowerDNS Recursor on Gentoo to enhance DNS security and mitigate cache poisoning risks with this detailed step-by-step guide
The previous version of the PowerDNS Recursor (3.1.5) did not properly address the issue, as UDP source port selection was insufficiently randomized

Summary

Gentoo Linux Security Advisory [UPDATE] GLSA 200804-22:03 https://security.gentoo.org/ Severity: Normal Title: PowerDNS Recursor: DNS Cache Poisoning Date: April 18, 2008 Updated: August 21, 2008 Bugs: #215567, #231335 ID: 200804-22:03

Update ===== The previous version of the PowerDNS Recursor (3.1.5) did not properly address the issue, as UDP source port selection was insufficiently randomized. We advise all users to upgrade to 3.1.6.
The updated sections appear below.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/pdns-recursor < 3.1.6 >= 3.1.6
========== Amit Klein of Trusteer reported that insufficient randomness is used to calculate the TRXID values an...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory gentoo attack dns cache normal powerdns dns risk

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory gentoo attack dns cache normal powerdns dns risk

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here