Net::DNS .060 allows remote attackers to cause DOS

Thread: Net::DNS .060 allows remote attackers to cause DOS

Search this list only Search all lists
Net::DNS .060 allows remote attackers to cause DOS
	2008-03-27 10:15:55
From: http://search.cpan.org/src/OLAF/Net-DNS-0.63/Changes Fix rt.cpan.org #30316 Security issue with Net:NS Resolver. Net/DNS/RR/A.pm in Net:NS 0.60 build 654 allows remote attackers to cause a denial of service (program "croak") via a crafted DNS response (htt p://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6341). Packet parsing routines are now enclosed in eval blocks to trap exception and avoid premature termination of user program. Fix: Update to 0.63. Note: to Freebsd Ports SpamAssassin users: A minor update to SA will include dependency on 0.63. pt-Net-DNS was updated on ports tree 10 days ago: htt p://www.freebsd.org/cgi/query-pr.cgi?pr=120702 An official update to SA ports version 3.4.2_3 will be send to ports shortly. -- Michael Scheidell, CTO Main: 561-999-5000, Office: 561-939-7259 > \| SECNAP Network Security Corporation Winner 2008 Technosium hot company award. www.technosium.com/hotcompanies/ <http://ww w.technosium.com/hotcompanies/> ____________________________________________________________ _____________ This email has been scanned and certified safe by SpammerTrap(tm). For Information please see http://www.spammertrap.com ____________________________________________________________ _____________ ------------------------------------------------------------ ------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216 239;13503038;w?http://sf.net/marketplace _______________________________________________ AMaViS-user mailing list AMaViS-userlists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amav is.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/ho wto/

Re: Net::DNS .060 allows remote attackers to cause DOS
	2008-03-27 15:50:30
Michael Scheidell wrote: > From: > http://search.cpan.org/src/OLAF/Net-DNS-0.63/Changes > > Fix rt.cpan.org #30316 Security issue with Net:NS Resolver. > > Net/DNS/RR/A.pm in Net:NS 0.60 build 654 allows remote attackers > to cause a denial of service (program "croak") via a crafted DNS > response (htt p://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6341). Packet > parsing routines are now enclosed in eval blocks to trap exception > and avoid premature termination of user program. > > Fix: Update to 0.63. > > Note: to Freebsd Ports SpamAssassin users: A minor update to SA will > include dependency on 0.63. pt-Net-DNS was updated on ports tree 10 > days ago: > htt p://www.freebsd.org/cgi/query-pr.cgi?pr=120702 > > An official update to SA ports version 3.4.2_3 will be send to ports > shortly. you mean 3.4.2_3 I guess. PS. shouldn't the audit db be updated? ------------------------------------------------------------ ------------- Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216 239;13503038;w?http://sf.net/marketplace _______________________________________________ AMaViS-user mailing list AMaViS-userlists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/amavis-user AMaViS-FAQ:http://www.amav is.org/amavis-faq.php3 AMaViS-HowTos:http://www.amavis.org/ho wto/

[1-2]

about | contact Other archives ( Real Estate discussion Medical topics )