Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns

To: Moritz Muehlenhoff <jmm@inutil.org>
Cc: "Adam D. Barratt" <adam@adam-barratt.org.uk>, Julien Cristau <jcristau@debian.org>, debian-release@lists.debian.org, security@debian.org
Subject: Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
From: Nicholas Bamber <nicholas@periapt.co.uk>
Date: Tue, 24 Jan 2012 20:16:08 +0000
Message-id: <[🔎] 4F1F1188.1070608@periapt.co.uk>
In-reply-to: <[🔎] 4F1F112A.8030104@periapt.co.uk>
References: <4EFF1C6C.4080801@periapt.co.uk> <20111231150045.GP3104@radis.cristau.org> <[🔎] 4F009D55.6000606@periapt.co.uk> <[🔎] 20120112214041.GO9839@radis.cristau.org> <[🔎] 4F0F64CE.5070500@periapt.co.uk> <[🔎] 20120114121844.GA9839@radis.cristau.org> <[🔎] 4F13396E.1040202@periapt.co.uk> <[🔎] e3926615e14d6e2e5e958b7a274b3c0d@mail.adsl.funky-badger.org> <[🔎] 4F1ECF0D.3050805@periapt.co.uk> <[🔎] 20120124190556.GC4409@inutil.org> <[🔎] 4F1F112A.8030104@periapt.co.uk>

Oh and I should have been talking about CVE-2011-5056 anyway. But I do
think CVE-2011-5055 is resolved.

On 24/01/12 20:14, Nicholas Bamber wrote:
> Moritz,
> 	Actually it is acknowledged to be present in 2.0.04-*.
> 
> On 24/01/12 19:05, Moritz Muehlenhoff wrote:
>> On Tue, Jan 24, 2012 at 03:32:29PM +0000, Nicholas Bamber wrote:
>>> Second attempt at preparing a fix for this issue.
>>>
>>> By the way CVE-2011-5055, as far as I can see, only applies to the
>>> experimental release. That will be fixed when upstream issue a new
>>> upstream 2.x release. Could the security page be updated to reflect that.
>>
>> I've updated the Security Tracker.
>>
>> Cheers,
>>         Moritz
> 
> 


-- 
Nicholas Bamber | http://www.periapt.co.uk/
PGP key 3BFFE73C from pgp.mit.edu

Reply to:

References:
- Re: Inadequate source of entropy in recursive queries: maradns
  - From: Nicholas Bamber <nicholas@periapt.co.uk>
- Re: Inadequate source of entropy in recursive queries: maradns
  - From: Julien Cristau <jcristau@debian.org>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: Nicholas Bamber <nicholas@periapt.co.uk>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: Julien Cristau <jcristau@debian.org>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: Nicholas Bamber <nicholas@periapt.co.uk>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: Nicholas Bamber <nicholas@periapt.co.uk>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: Moritz Muehlenhoff <jmm@inutil.org>
- Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
  - From: Nicholas Bamber <nicholas@periapt.co.uk>

Prev by Date: Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
Next by Date: Processed: block 631019 with 657203
Previous by thread: Re: Bug#653838: Inadequate source of entropy in recursive queries: maradns
Next by thread: Re: Inadequate source of entropy in recursive queries: maradns
Index(es):
- Date
- Thread