CVE-2009-0025

Publication date 7 January 2009

Last updated 24 July 2024


Ubuntu priority

BIND 9.6.0, 9.5.1, 9.5.0, 9.4.3, and earlier does not properly check the return value from the OpenSSL DSA_verify function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature, a similar vulnerability to CVE-2008-5077.

Status

Package Ubuntu Release Status
bind9 8.10 intrepid
Fixed 1:9.5.0.dfsg.P2-1ubuntu3.1
8.04 LTS hardy
Fixed 1:9.4.2.dfsg.P2-2ubuntu0.1
7.10 gutsy
Fixed 1:9.4.1-P1-3ubuntu2.1
6.06 LTS dapper
Fixed 1:9.3.2-2ubuntu1.6

References

Related Ubuntu Security Notices (USN)

    • USN-706-1
    • Bind vulnerability
    • 9 January 2009

Other references