oss-security January 2011 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: [oss-security] CVE request: MaraDNS DoS via long q

[oss-security] CVE request: MaraDNS DoS via long queries

From: Raphael Geissert <geissert_at_nospam>
Date: Mon Jan 24 2011 - 01:55:40 GMT
To: oss-security@lists.openwall.com

Hi,

A crash bug has been reported against MaraDNS 1.4.03 when long queries are
sent to the resolver. Details can be found at:
http://bugs.debian.org/610834

As of the time of writing, the reporter is testing other versions and at least
1.4.05 also seems to be affected.

Josh, Steven: could a CVE id be assigned? Thanks in advance.

Regards,
-- Raphael Geissert - Debian Developer www.debian.org - get.debian.net