Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 200901-03 ] pdnsd: Denial of Service and cache poisoning
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Advocate
Advocate


Joined: 12 May 2004
Posts: 2663

PostPosted: Sun Jan 11, 2009 3:26 am    Post subject: [ GLSA 200901-03 ] pdnsd: Denial of Service and cache poison Reply with quote

Gentoo Linux Security Advisory

Title: pdnsd: Denial of Service and cache poisoning (GLSA 200901-03)
Severity: normal
Exploitable: remote
Date: January 11, 2009
Bug(s): #231285
ID: 200901-03

Synopsis

Two errors in pdnsd allow for Denial of Service and cache poisoning.

Background

pdnsd is a proxy DNS server with permanent caching that is designed to cope with unreachable DNS servers.

Affected Packages

Package: net-dns/pdnsd
Vulnerable: < 1.2.7
Unaffected: >= 1.2.7
Architectures: All supported architectures


Description

Two issues have been reported in pdnsd:
  • The p_exec_query() function in src/dns_query.c does not properly handle many entries in the answer section of a DNS reply, related to a "dangling pointer bug" (CVE-2008-4194).
  • The default value for query_port_start was set to 0, disabling UDP source port randomization for outgoing queries (CVE-2008-1447).


Impact

An attacker could exploit the second weakness to poison the cache of pdnsd and thus spoof DNS traffic, which could e.g. lead to the redirection of web or mail traffic to malicious sites. The first issue can be exploited by enticing pdnsd to send a query to a malicious DNS server, or using the port randomization weakness, and might lead to a Denial of Service.

Workaround

Port randomization can be enabled by setting the "query_port_start" option to 1024 which would resolve the CVE-2008-1447 issue.

Resolution

All pdnsd users should upgrade to the latest version:
Code:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-dns/pdnsd-1.2.7"


References

CVE-2008-1447
CVE-2008-4194
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum