LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

bind: DNS cache poisoning

Package(s):bind CVE #(s):CVE-2007-2926
Created:July 24, 2007 Updated:August 20, 2007
Description: A flaw was found in the way BIND generates outbound DNS query ids. If an attacker is able to acquire a finite set of query IDs, it becomes possible to accurately predict future query IDs. Future query ID prediction may allow an attacker to conduct a DNS cache poisoning attack, which can result in the DNS server returning incorrect client query data.
Alerts:
Gentoo 200708-13 2007-08-18
SuSE SUSE-SA:2007:047 2007-08-01
Trustix TSLSA-2007-0023 2007-07-28
Slackware SSA:2007-207-01 2007-07-27
rPath rPSA-2007-0149-1 2007-07-27
Fedora FEDORA-2007-647 2007-07-26
Debian DSA-1341-2 2007-07-25
Mandriva MDKSA-2007:149 2007-12-31
Debian DSA-1341-1 2007-07-25
Ubuntu USN-491-1 2007-07-25
OpenPKG OpenPKG-SA-2007.022 2007-07-25
Fedora FEDORA-2007-1247 2007-07-24
Red Hat RHSA-2007:0740-01 2007-07-24
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds