[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#491809: libc6: DNS spoofing vulnerability [CVE-2008-1447]



* Aurelien Jarno:

>> Currently, there is no suitable patch to backport.  I hope that improved
>> port randomization will be available shortly.
>
> You mean a patch for the kernel?

Yes, one for the kernel, and one for the transaction ID generation in
the libc resolver, too.

(Oh, and "shortly" == "next week or so".)



Reply to: