[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#491809: libc6: DNS spoofing vulnerability [CVE-2008-1447]

Florian Weimer a écrit :
> * Aurelien Jarno:
> 
>> IMHO, the UDP randomization commit has to be backported to the etch
>> kernel. The advantage of this solution, is that it potentially fixes
>> other bugs/vulnerabilities in other protocols/programs using UDP.
> 
> Currently, there is no suitable patch to backport.  I hope that improved
> port randomization will be available shortly.

You mean a patch for the kernel?

-- 
  .''`.  Aurelien Jarno	            | GPG: 1024D/F1BCDB73
 : :' :  Debian developer           | Electrical Engineer
 `. `'   aurel32@debian.org         | aurelien@aurel32.net
   `-    people.debian.org/~aurel32 | www.aurel32.net
Reply to: