Launchpad CVE tracker

CVE 2008-1447

The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug."

Related bugs and status

CVE-2008-1447 (Candidate) is related to these bugs:

Bug #203169: "status" function for init scripts

		In	Importance	Status
203169	"status" function for init scripts	lsb (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	apache2 (Ubuntu)	Undecided	Fix Released
203169	"status" function for init scripts	bind9 (Ubuntu)	Undecided	Fix Released
203169	"status" function for init scripts	cron (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	dovecot (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	samba (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	openssh (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	sysklogd (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	udev (Ubuntu)	Undecided	Invalid
203169	"status" function for init scripts	at (Ubuntu)	Wishlist	Fix Released
203169	"status" function for init scripts	debian-policy (Debian)	Unknown	Fix Released
203169	"status" function for init scripts	lsb (Debian)	Unknown	Fix Released
203169	"status" function for init scripts	samba (Debian)	Unknown	Fix Released
203169	"status" function for init scripts	postgresql-8.3 (Ubuntu)	Undecided	Invalid
203169	"status" function for init scripts	asterisk (Ubuntu)	Undecided	Invalid
203169	"status" function for init scripts	nis	Undecided	Invalid
203169	"status" function for init scripts	nis (Ubuntu)	Undecided	Invalid

Bug #246702: [CVE-2008-1447] Randomize DNS query source ports to prevent cache poisoning

Summary				In	Importance	Status
	246702	[CVE-2008-1447] Randomize DNS query source ports to prevent cache poisoning		bind9 (Ubuntu)	High	Fix Released
	246702	[CVE-2008-1447] Randomize DNS query source ports to prevent cache poisoning		glibc (Ubuntu)	Low	Fix Released

Bug #246818: [CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby

		In	Importance	Status
246818	[CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby	ruby1.8 (Ubuntu)	Undecided	Fix Released
246818	[CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby	ruby1.8 (Ubuntu Dapper)	Undecided	Fix Released
246818	[CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby	ruby1.8 (Ubuntu Feisty)	Undecided	Fix Released
246818	[CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby	ruby1.8 (Ubuntu Gutsy)	Undecided	Fix Released
246818	[CVE-2008-2376] Integer overflow in the rb_ary_fill function in array.c in Ruby	ruby1.8 (Ubuntu Hardy)	Undecided	Fix Released

Bug #247409: Python-dns does not randomize TID causing DNS poisoning risk

		In	Importance	Status
247409	Python-dns does not randomize TID causing DNS poisoning risk	python-dns (Ubuntu)	Medium	Fix Released
247409	Python-dns does not randomize TID causing DNS poisoning risk	python-dns (Ubuntu Dapper)	Medium	Fix Released
247409	Python-dns does not randomize TID causing DNS poisoning risk	python-dns (Ubuntu Feisty)	Medium	Fix Released
247409	Python-dns does not randomize TID causing DNS poisoning risk	python-dns (Ubuntu Hardy)	Medium	Fix Released
247409	Python-dns does not randomize TID causing DNS poisoning risk	python-dns (Ubuntu Gutsy)	Medium	Fix Released
247409	Python-dns does not randomize TID causing DNS poisoning risk	python-dns (Debian)	Unknown	Fix Released
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.15 (Ubuntu)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.15 (Ubuntu Dapper)	High	Won't Fix
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.15 (Ubuntu Feisty)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.15 (Ubuntu Gutsy)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.15 (Ubuntu Hardy)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.20 (Ubuntu)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.20 (Ubuntu Dapper)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.20 (Ubuntu Feisty)	High	Won't Fix
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.20 (Ubuntu Gutsy)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.20 (Ubuntu Hardy)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.22 (Ubuntu)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.22 (Ubuntu Dapper)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.22 (Ubuntu Feisty)	Undecided	Invalid
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.22 (Ubuntu Gutsy)	High	Won't Fix
247409	Python-dns does not randomize TID causing DNS poisoning risk	linux-source-2.6.22 (Ubuntu Hardy)	Undecided	Invalid

Bug #247598: dnsmasq might be vulnerable to recent DNS spoofing issue

		In	Importance	Status
247598	dnsmasq might be vulnerable to recent DNS spoofing issue	dnsmasq (Ubuntu)	Undecided	Fix Released
247598	dnsmasq might be vulnerable to recent DNS spoofing issue	dnsmasq (Debian)	Unknown	Fix Released
247598	dnsmasq might be vulnerable to recent DNS spoofing issue	dnsmasq (Ubuntu Dapper)	Undecided	Won't Fix
247598	dnsmasq might be vulnerable to recent DNS spoofing issue	dnsmasq (Ubuntu Feisty)	Undecided	Won't Fix
247598	dnsmasq might be vulnerable to recent DNS spoofing issue	dnsmasq (Ubuntu Hardy)	Undecided	Fix Released
247598	dnsmasq might be vulnerable to recent DNS spoofing issue	dnsmasq (Ubuntu Gutsy)	Undecided	Won't Fix

Bug #257122: Multiple vulnerabilities in Ruby

		In	Importance	Status
257122	Multiple vulnerabilities in Ruby	ruby1.8 (Ubuntu)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.9 (Ubuntu)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.8 (Ubuntu Feisty)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.9 (Ubuntu Feisty)	Undecided	Won't Fix
257122	Multiple vulnerabilities in Ruby	ruby1.8 (Ubuntu Gutsy)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.9 (Ubuntu Gutsy)	Undecided	Won't Fix
257122	Multiple vulnerabilities in Ruby	ruby1.8 (Ubuntu Intrepid)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.9 (Ubuntu Intrepid)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.8 (Ubuntu Dapper)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.9 (Ubuntu Dapper)	Undecided	Won't Fix
257122	Multiple vulnerabilities in Ruby	ruby1.8 (Ubuntu Hardy)	Undecided	Fix Released
257122	Multiple vulnerabilities in Ruby	ruby1.9 (Ubuntu Hardy)	Undecided	Won't Fix

Bug #261459: DOS Vulnerability in Ruby REXML

		In	Importance	Status
261459	DOS Vulnerability in Ruby REXML	ruby1.8 (Ubuntu)	Undecided	Fix Released
261459	DOS Vulnerability in Ruby REXML	ruby1.8 (Ubuntu Dapper)	Undecided	Fix Released
261459	DOS Vulnerability in Ruby REXML	ruby1.8 (Ubuntu Gutsy)	Undecided	Fix Released
261459	DOS Vulnerability in Ruby REXML	ruby1.8 (Ubuntu Hardy)	Undecided	Fix Released

Bug #284763: Please sync pdnsd 1.2.6-par-11 from Debian Unstable (Main)

Summary				In	Importance	Status
	284763	Please sync pdnsd 1.2.6-par-11 from Debian Unstable (Main)		pdnsd (Ubuntu)	High	Fix Released

Bug #455451: BIND9 seems vulnerable to CVE-2008-1447 again

Summary				In	Importance	Status
	455451	BIND9 seems vulnerable to CVE-2008-1447 again		bind9 (Ubuntu)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-1447

References