Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Gentoo: 200901-03 Critical: pdnsd Cache Poisoning And DoS Exploit

gentoo
Calendar Grey January 11, 2009
Dist Gentoo Esm H88
Gentoo alert regarding vulnerabilities in pdnsd leading to possible service disruption and cache exploitation. Immediate update advised for protection.
Two errors in pdnsd allow for Denial of Service and cache poisoning.

Summary

Gentoo Linux Security Advisory GLSA 200901-03 https://security.gentoo.org/ Severity: Normal Title: pdnsd: Denial of Service and cache poisoning Date: January 11, 2009 Bugs: #231285 ID: 200901-03

Synopsis ======= Two errors in pdnsd allow for Denial of Service and cache poisoning.
Background ========= pdnsd is a proxy DNS server with permanent caching that is designed to cope with unreachable DNS servers.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/pdnsd < 1.2.7 >= 1.2.7
========== Two issues have been reported in pdnsd:
* The p_exec_query() function in src/dns_query.c does not properly handle many entries in the answer section of a DNS ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service gentoo cache poisoning network exploit pdnsd

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory denial of service gentoo cache poisoning network exploit pdnsd

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here