Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200812-19 (pdns)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.63034

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200812-19 (pdns)

Resumen: The remote host is missing updates announced in;advisory GLSA 200812-19.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200812-19.

Vulnerability Insight:
Two vulnerabilities have been discovered in PowerDNS, possibly leading to a
Denial of Service and easing cache poisoning attacks.

Solution:
All PowerDNS users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-dns/pdns-2.9.21.2'

CVSS Score:
6.4

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-3337
BugTraq ID: 30587
http://www.securityfocus.com/bid/30587
Debian Security Information: DSA-1628 (Google Search)
https://www.debian.org/security/2008/dsa-1628
https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00109.html
https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00140.html
http://security.gentoo.org/glsa/glsa-200812-19.xml
http://mailman.powerdns.com/pipermail/pdns-users/2008-August/005646.html
http://secunia.com/advisories/31401
http://secunia.com/advisories/31407
http://secunia.com/advisories/31448
http://secunia.com/advisories/31687
http://secunia.com/advisories/33264
SuSE Security Announcement: SUSE-SR:2008:017 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
http://www.vupen.com/english/advisories/2008/2320
XForce ISS Database: powerdns-query-weak-security(44253)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44253
Common Vulnerability Exposure (CVE) ID: CVE-2008-5277
BugTraq ID: 32627
http://www.securityfocus.com/bid/32627
http://securitytracker.com/id?1021304
http://secunia.com/advisories/32979
SuSE Security Announcement: SUSE-SR:2008:027 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html
XForce ISS Database: powerdns-chhinfo-dos(47076)
https://exchange.xforce.ibmcloud.com/vulnerabilities/47076

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.63034
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200812-19 (pdns)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200812-19.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200812-19. Vulnerability Insight: Two vulnerabilities have been discovered in PowerDNS, possibly leading to a Denial of Service and easing cache poisoning attacks. Solution: All PowerDNS users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-dns/pdns-2.9.21.2' CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3337 BugTraq ID: 30587 http://www.securityfocus.com/bid/30587 Debian Security Information: DSA-1628 (Google Search) https://www.debian.org/security/2008/dsa-1628 https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00109.html https://www.redhat.com/archives/fedora-package-announce/2008-August/msg00140.html http://security.gentoo.org/glsa/glsa-200812-19.xml http://mailman.powerdns.com/pipermail/pdns-users/2008-August/005646.html http://secunia.com/advisories/31401 http://secunia.com/advisories/31407 http://secunia.com/advisories/31448 http://secunia.com/advisories/31687 http://secunia.com/advisories/33264 SuSE Security Announcement: SUSE-SR:2008:017 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html http://www.vupen.com/english/advisories/2008/2320 XForce ISS Database: powerdns-query-weak-security(44253) https://exchange.xforce.ibmcloud.com/vulnerabilities/44253 Common Vulnerability Exposure (CVE) ID: CVE-2008-5277 BugTraq ID: 32627 http://www.securityfocus.com/bid/32627 http://securitytracker.com/id?1021304 http://secunia.com/advisories/32979 SuSE Security Announcement: SUSE-SR:2008:027 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html XForce ISS Database: powerdns-chhinfo-dos(47076) https://exchange.xforce.ibmcloud.com/vulnerabilities/47076
Copyright	Copyright (C) 2008 E-Soft Inc.