Vulnerability in Net::DNS 0.60
Julian Field
MailScanner at ecs.soton.ac.uk
Fri Jan 4 19:34:27 GMT 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Upgraded. There is a new version on the website which includes Net::DNS
0.62 instead of 0.60.
Denis Beauchemin wrote:
> Hello all,
>
> I just read the following:
>
> 07.52.14 CVE: CVE-2007-6341
> Platform: Linux
> Title: Perl Net::DNS DNS Response Remote Denial of Service
> Description: The Perl Net::DNS module allows scripts written in Perl
> to perform DNS queries. The application is exposed to a remote denial
> of service issue due to a failure of the module to properly handle
> malformed DNS responses. DNS version 0.60 is affected.
> Ref: https://rt.cpan.org/Public/Bug/Display.html?id=30316
>
> Julian, your easy Clam+SA install package contains Net::DNS 0.60. The
> current version is 0.62.
>
> Denis
>
Jules
- --
Julian Field MEng CITP CEng
www.MailScanner.info
Buy the MailScanner book at www.MailScanner.info/store
MailScanner customisation, or any advanced system administration help?
Contact me at Jules at Jules.FM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.7.0 (Build 1012)
Comment: Use Thunderbird's Enigmail add-on to verify this message
Charset: ISO-8859-1
wj8DBQFHfopEEfZZRxQVtlQRAq+TAJ9HzyClf73GOIwgsEITHjQd2ym9EgCeIsCL
41gQiXMouQRmVnvlIsoE3lc=
=bTee
-----END PGP SIGNATURE-----
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the MailScanner
mailing list