Summary: | net-dns/pdns <2.9.21.1 Ignoring invalid DNS queries eases cache poisoning (CVE-2008-3337) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sven Wegener <swegener> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://secunia.com/advisories/31407/ | ||
Whiteboard: | B3 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Sven Wegener
2008-08-05 22:19:42 UTC
OK, I commited it, with just "Version bump" as comment. A little bit early, but there are other packagers that already have public reference to the new version and it's security implication. Arch Security Liaisons, please test and mark stable: =net-dns/pdns-2.9.21.1 Target keywords : "amd64 x86" CC'ing current Liaisons: amd64 : keytoaster, tester x86 : maekke, armin76 public via $URL Arches, please test and mark stable: =net-dns/pdns-2.9.21.1 Target keywords : "amd64 x86" amd64/x86 stable, all arches done. vote: YES yes too, request filed. GLSA 200812-19 |