Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2007-2926

Publication date 24 July 2007

Last updated 24 July 2024


Ubuntu priority

ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.

Status

Package Ubuntu Release Status
bind9 7.04 feisty
Fixed 9.3.4-2ubuntu2.1
6.10 edgy
Fixed 9.3.2-2ubuntu3.2
6.06 LTS dapper
Fixed 9.3.2-2ubuntu1.3

References

Related Ubuntu Security Notices (USN)

Other references