Debian GNU/Linux Information for VU#252735

ISC BIND generates cryptographically weak DNS query IDs



Vendor Statement

The Debian project has fixed this vulnerability in its stable distribution Debian GNU/Linux 4.0 in version 9.3.4-2etch1 of bind9 and in its old stable distribution Debian GNU/Linux 3.1 in version 9.2.4-1sarge3 of bind9 via Debian Security Advisory 1341 as in


Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



See for more details.

If you have feedback, comments, or additional information about this vulnerability, please send us email.