CVE-2014-3209
First published: Sat May 03 2014(Updated: )
The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nlnetlabs Ldns | =1.6.0 | |
| Nlnetlabs Ldns | =1.6.1 | |
| Nlnetlabs Ldns | =1.6.2 | |
| Nlnetlabs Ldns | =1.6.3 | |
| Nlnetlabs Ldns | =1.6.4 | |
| Nlnetlabs Ldns | =1.6.5 | |
| Nlnetlabs Ldns | =1.6.6 | |
| Nlnetlabs Ldns | =1.6.7 | |
| Nlnetlabs Ldns | =1.6.8 | |
| Nlnetlabs Ldns | =1.6.9 | |
| Nlnetlabs Ldns | =1.6.10 | |
| Nlnetlabs Ldns | =1.6.11 | |
| debian/ldns | 1.7.1-2 1.8.3-1 1.8.4-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2014/05/03/2
- http://www.openwall.com/lists/oss-security/2014/05/05/4
- http://www.securityfocus.com/bid/67200
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746758
- https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=573
- https://security-tracker.debian.org/tracker/CVE-2014-3209
- http://git.nlnetlabs.nl/ldns/commit/?h=develop&id=169f38c1e25750f935838b670871056428977e6b
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/debian-bugs
- source/Debian
- alias/CVE-2014-3209
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/softwarecombine
- agent/tags
- agent/event
- collector/security-tracker-debian
- agent/software-canonical-lookup
- vendor/nlnetlabs
- canonical/nlnetlabs ldns
- version/nlnetlabs ldns/1.6.0
- version/nlnetlabs ldns/1.6.1
- version/nlnetlabs ldns/1.6.2
- version/nlnetlabs ldns/1.6.3
- version/nlnetlabs ldns/1.6.4
- version/nlnetlabs ldns/1.6.5
- version/nlnetlabs ldns/1.6.6
- version/nlnetlabs ldns/1.6.7
- version/nlnetlabs ldns/1.6.8
- version/nlnetlabs ldns/1.6.9
- version/nlnetlabs ldns/1.6.10
- version/nlnetlabs ldns/1.6.11
- package-manager/debian