oss-sec mailing list archives

Re: CVE request: MaraDNS DoS via long queries

From: Josh Bressers <bressers () redhat com>
Date: Mon, 24 Jan 2011 13:38:07 -0500 (EST)

Please use CVE-2011-0520.

Thanks.

-- 
    JB


----- Original Message -----

Hi,

A crash bug has been reported against MaraDNS 1.4.03 when long queries
are
sent to the resolver. Details can be found at:
http://bugs.debian.org/610834

As of the time of writing, the reporter is testing other versions and
at least
1.4.05 also seems to be affected.

Josh, Steven: could a CVE id be assigned? Thanks in advance.

Regards,
--
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net

Current thread:

CVE request: MaraDNS DoS via long queries Raphael Geissert (Jan 23)
- Re: CVE request: MaraDNS DoS via long queries Josh Bressers (Jan 24)