Debian DSA-1515-1 : libnet-dns-perl - several vulnerabilities

medium Nessus Plugin ID 31426

Synopsis

The remote Debian host is missing a security-related update.

Description

Several remote vulnerabilities have been discovered in libnet-dns-perl. The Common Vulnerabilities and Exposures project identifies the following problems :

It was discovered that libnet-dns-perl generates very weak transaction IDs when sending queries (CVE-2007-3377 ). This update switches transaction ID generation to the Perl random generator, making prediction attacks more difficult.

Compression loops in domain names resulted in an infinite loop in the domain name expander written in Perl (CVE-2007-3409 ). The Debian package uses an expander written in C by default, but this vulnerability has been addressed nevertheless.

Decoding malformed A records could lead to a crash (via an uncaught Perl exception) of certain applications using libnet-dns-perl (CVE-2007-6341 ).

Solution

Upgrade the libnet-dns-perl package.

For the old stable distribution (sarge), these problems have been fixed in version 0.48-1sarge1.

For the stable distribution (etch), these problems have been fixed in version 0.59-1etch1.

See Also

https://security-tracker.debian.org/tracker/CVE-2007-3409

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=457445

https://security-tracker.debian.org/tracker/CVE-2007-3377

https://www.debian.org/security/2008/dsa-1515

https://security-tracker.debian.org/tracker/CVE-2007-6341

Plugin Details

Severity: Medium

ID: 31426

File Name: debian_DSA-1515.nasl

Version: 1.18

Type: local

Agent: unix

Published: 3/13/2008

Updated: 1/4/2021

Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:libnet-dns-perl, cpe:/o:debian:debian_linux:3.1, cpe:/o:debian:debian_linux:4.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 3/11/2008

Reference Information

CVE: CVE-2007-3377, CVE-2007-3409, CVE-2007-6341

CWE: 119

DSA: 1515