Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2009-0858

The response_addname function in response.c in Daniel J. Bernstein djbdns 1.05 and earlier does not constrain offsets in the required manner, which allows remote attackers, with control over a third-party subdomain served by tinydns and axfrdns, to trigger DNS responses containing arbitrary records via crafted zone data for this subdomain.

Related bugs and status

CVE-2009-0858 (Candidate) is related to these bugs:

Bug #399012: [Intrepid] Security issue could allow dns-poisoning

Summary				In	Importance	Status
	399012	[Intrepid] Security issue could allow dns-poisoning		djbdns (Ubuntu)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://it.slashdot.org...
MISC: http://securityandthe....
BID: 33937
DEBIAN: DSA-1831
SECUNIA: 35820
MLIST: [dns] 20090225 djbdns ...
MLIST: [dns] 20090304 djbdns<...
XF: djbdns-response-packet...
BUGTRAQ: 20090226 djbdns misfor...
BUGTRAQ: 20090228 Re: djbdns mi...
BUGTRAQ: 20090305 Re: djbdns mi...