91422 – net-dns/maradns: Unspecified Random Number Generator Vulnerability

Bug 91422 - net-dns/maradns: Unspecified Random Number Generator Vulnerability

Summary: net-dns/maradns: Unspecified Random Number Generator Vulnerability

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All All

Importance:	High normal
Assignee:	Gentoo Security

URL:	http://secunia.com/advisories/15240/
Whiteboard:	~? [noglsa] jaervosz
Keywords:

Depends on:
Blocks:

Reported:	2005-05-04 05:44 UTC by Jean-François Brunette (RETIRED)
Modified:	2005-05-04 23:24 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jean-François Brunette (RETIRED) gentoo-dev

2005-05-04 05:44:32 UTC

Description:
A vulnerability with an unknown impact has been reported in MaraDNS.

The vulnerability is caused due to an unspecified error affecting the MaraDNS's secure random number generator.

No further details are currently available.

Solution:
Update to version 1.0.27.
http://www.maradns.org/download.html

Comment 1 MATSUU Takuto (RETIRED) gentoo-dev

2005-05-04 18:23:25 UTC

1.0.27 in cvs.

Comment 2 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2005-05-04 23:24:30 UTC

Thx MATSUU. As this is unstable I'll close without GLSA.