Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200903-14 Normal: BIND DNSSEC Spoofing Risk

gentoo
Calendar Grey March 9, 2009
Dist Gentoo Esm H88
Inadequate validation in BIND may result in forged DNSSEC entries. Update to address this vulnerability. Risk Level: Moderate.
Incomplete verification of RSA and DSA certificates might lead to spoofed records authenticated using DNSSEC.

Summary

Gentoo Linux Security Advisory GLSA 200903-14 https://security.gentoo.org/ Severity: Normal Title: BIND: Incorrect signature verification Date: March 09, 2009 Bugs: #254134, #257949 ID: 200903-14

Synopsis ======= Incomplete verification of RSA and DSA certificates might lead to spoofed records authenticated using DNSSEC.
Background ========= ISC BIND is the Internet Systems Consortium implementation of the Domain Name System (DNS) protocol.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/bind < 9.4.3_p1 >= 9.4.3_p1
========== BIND does not properly check the return value from the OpenSSL functions to verify DSA (CVE-2009-0025) and RSA (CVE-2009-02...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo BIND risk spoofing DNSSEC certificate

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo BIND risk spoofing DNSSEC certificate

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here