CVE 2008-1447
The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug."
Related bugs and status
CVE-2008-1447 (Candidate) is related to these bugs:
Bug #203169: "status" function for init scripts
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
203169 | "status" function for init scripts | lsb (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | apache2 (Ubuntu) | Undecided | Fix Released | ||
203169 | "status" function for init scripts | bind9 (Ubuntu) | Undecided | Fix Released | ||
203169 | "status" function for init scripts | cron (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | dovecot (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | samba (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | openssh (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | sysklogd (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | udev (Ubuntu) | Undecided | Invalid | ||
203169 | "status" function for init scripts | at (Ubuntu) | Wishlist | Fix Released | ||
203169 | "status" function for init scripts | debian-policy (Debian) | Unknown | Fix Released | ||
203169 | "status" function for init scripts | lsb (Debian) | Unknown | Fix Released | ||
203169 | "status" function for init scripts | samba (Debian) | Unknown | Fix Released | ||
203169 | "status" function for init scripts | postgresql-8.3 (Ubuntu) | Undecided | Invalid | ||
203169 | "status" function for init scripts | asterisk (Ubuntu) | Undecided | Invalid | ||
203169 | "status" function for init scripts | nis | Undecided | Invalid | ||
203169 | "status" function for init scripts | nis (Ubuntu) | Undecided | Invalid |
Bug #246702: [CVE-2008-1447] Randomize DNS query source ports to prevent cache poisoning
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
246702 | [CVE-2008-1447] Randomize DNS query source ports to prevent cache poisoning | bind9 (Ubuntu) | High | Fix Released | ||
246702 | [CVE-2008-1447] Randomize DNS query source ports to prevent cache poisoning | glibc (Ubuntu) | Low | Fix Released |
Bug #246818: [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
246818 | [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby | ruby1.8 (Ubuntu) | Undecided | Fix Released | ||
246818 | [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby | ruby1.8 (Ubuntu Dapper) | Undecided | Fix Released | ||
246818 | [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby | ruby1.8 (Ubuntu Feisty) | Undecided | Fix Released | ||
246818 | [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby | ruby1.8 (Ubuntu Gutsy) | Undecided | Fix Released | ||
246818 | [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby | ruby1.8 (Ubuntu Hardy) | Undecided | Fix Released |
Bug #247409: Python-dns does not randomize TID causing DNS poisoning risk
Bug #247598: dnsmasq might be vulnerable to recent DNS spoofing issue
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
247598 | dnsmasq might be vulnerable to recent DNS spoofing issue | dnsmasq (Ubuntu) | Undecided | Fix Released | ||
247598 | dnsmasq might be vulnerable to recent DNS spoofing issue | dnsmasq (Debian) | Unknown | Fix Released | ||
247598 | dnsmasq might be vulnerable to recent DNS spoofing issue | dnsmasq (Ubuntu Dapper) | Undecided | Won't Fix | ||
247598 | dnsmasq might be vulnerable to recent DNS spoofing issue | dnsmasq (Ubuntu Feisty) | Undecided | Won't Fix | ||
247598 | dnsmasq might be vulnerable to recent DNS spoofing issue | dnsmasq (Ubuntu Hardy) | Undecided | Fix Released | ||
247598 | dnsmasq might be vulnerable to recent DNS spoofing issue | dnsmasq (Ubuntu Gutsy) | Undecided | Won't Fix |
Bug #257122: Multiple vulnerabilities in Ruby
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
257122 | Multiple vulnerabilities in Ruby | ruby1.8 (Ubuntu) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.9 (Ubuntu) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.8 (Ubuntu Feisty) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.9 (Ubuntu Feisty) | Undecided | Won't Fix | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.8 (Ubuntu Gutsy) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.9 (Ubuntu Gutsy) | Undecided | Won't Fix | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.8 (Ubuntu Intrepid) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.9 (Ubuntu Intrepid) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.8 (Ubuntu Dapper) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.9 (Ubuntu Dapper) | Undecided | Won't Fix | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.8 (Ubuntu Hardy) | Undecided | Fix Released | ||
257122 | Multiple vulnerabilities in Ruby | ruby1.9 (Ubuntu Hardy) | Undecided | Won't Fix |
Bug #261459: DOS Vulnerability in Ruby REXML
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
261459 | DOS Vulnerability in Ruby REXML | ruby1.8 (Ubuntu) | Undecided | Fix Released | ||
261459 | DOS Vulnerability in Ruby REXML | ruby1.8 (Ubuntu Dapper) | Undecided | Fix Released | ||
261459 | DOS Vulnerability in Ruby REXML | ruby1.8 (Ubuntu Gutsy) | Undecided | Fix Released | ||
261459 | DOS Vulnerability in Ruby REXML | ruby1.8 (Ubuntu Hardy) | Undecided | Fix Released |
Bug #284763: Please sync pdnsd 1.2.6-par-11 from Debian Unstable (Main)
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
284763 | Please sync pdnsd 1.2.6-par-11 from Debian Unstable (Main) | pdnsd (Ubuntu) | High | Fix Released |
Bug #455451: BIND9 seems vulnerable to CVE-2008-1447 again
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
455451 | BIND9 seems vulnerable to CVE-2008-1447 again | bind9 (Ubuntu) | Undecided | Invalid |
See the
CVE page on Mitre.org
for more details.