Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200807-09 Critical Severity: OpenSSL Vulnerability Discovery

gentoo
Calendar Grey July 11, 2008
Dist Gentoo Esm H88
An essential security alert for Fedora addressing major vulnerabilities in DNS cache manipulation. Immediate remedial actions necessary.
A weakness in the DNS protocol has been reported, which could lead to cache poisoning on recursive resolvers.

Summary

Gentoo Linux Security Advisory GLSA 200807-08 https://security.gentoo.org/ Severity: High Title: BIND: Cache poisoning Date: July 11, 2008 Bugs: #231201 ID: 200807-08

Synopsis ======= A weakness in the DNS protocol has been reported, which could lead to cache poisoning on recursive resolvers.
Background ========= ISC BIND is the Internet Systems Consortium implementation of the Domain Name System (DNS) protocol.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/bind < 9.4.2_p1 >= 9.4.2_p1
========== Dan Kaminsky of IOActive has reported a weakness in the DNS protocol related to insufficient randomness of DNS transaction IDs and query sourc...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo high severity cache poisoning DNS exploit

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo high severity cache poisoning DNS exploit

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here