Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory [UPDATE] GLSA 200804-22:03
https://security.gentoo.org/
Severity: Normal
Title: PowerDNS Recursor: DNS Cache Poisoning
Date: April 18, 2008
Updated: August 21, 2008
Bugs: #215567, #231335
ID: 200804-22:03
Update
=====
The previous version of the PowerDNS Recursor (3.1.5) did not
properly address the issue, as UDP source port selection was
insufficiently randomized. We advise all users to upgrade to 3.1.6.
The updated sections appear below.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-dns/pdns-recursor < 3.1.6 >= 3.1.6
==========
Amit Klein of Trusteer reported that insufficient randomness is used to
calculate the TRXID values an...
style>.gentoo_availability{display:block;}