Debian GNU/Linux Information for VU#252735

ISC BIND generates cryptographically weak DNS query IDs

Status

Affected

Vendor Statement

The Debian project has fixed this vulnerability in its stable distribution Debian GNU/Linux 4.0 in version 9.3.4-2etch1 of bind9 and in its old stable distribution Debian GNU/Linux 3.1 in version 9.2.4-1sarge3 of bind9 via Debian Security Advisory 1341 as in

<http://www.debian.org/security/2007/dsa-1341>

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

See http://www.debian.org/security/2007/dsa-1341 for more details.

If you have feedback, comments, or additional information about this vulnerability, please send us email.