Lucene search
Gentoo FoundationMGASA-2014-0212HistoryMay 10, 2014 - 11:38 p.m.
Updated ldns package fixes CVE-2014-3209
2014-05-1023:38:37
Gentoo Foundation
advisories.mageia.org
12
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Updated ldns packages fix security vulnerability: ldns-keygen creates a private key with the default permissions according to the users umask, which in most cases will cause the private key to be world-readable (CVE-2014-3209).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 3 | noarch | ldns | < 1.6.16-2.1 | ldns-1.6.16-2.1.mga3 |
| Mageia | 4 | noarch | ldns | < 1.6.16-3.1 | ldns-1.6.16-3.1.mga4 |
Related
nvd
nvd
CVE-2014-3209
2014-11-16 01:59:03
ubuntucve
ubuntucve
CVE-2014-3209
2014-11-15 00:00:00
securityvulns
securityvulns
ldns weak permissions
2014-05-15 00:00:00
[ MDVSA-2014:085 ] ldns
2014-05-15 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : ldns (MDVSA-2014:085)
2014-05-13 00:00:00
RHEL 7 : ldns (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 6 : ldns (Unpatched Vulnerability)
2024-06-03 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0212)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-3491-1)
2017-11-23 00:00:00
cvelist
cvelist
CVE-2014-3209
2014-11-16 01:00:00
prion
prion
Design/Logic Flaw
2014-11-16 01:59:00
debiancve
debiancve
CVE-2014-3209
2014-11-16 01:59:03
cve
cve
CVE-2014-3209
2014-11-16 01:59:03
ubuntu
ubuntu
ldns vulnerabilities
2017-11-22 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
0
Percentile
5.1%
Related for MGASA-2014-0212