CVE-2007-2926

Priority
Description
ISC BIND 9 through 9.5.0a5 uses a weak random number generator during
generation of DNS query ids when answering resolver questions or sending
NOTIFY messages to slave name servers, which makes it easier for remote
attackers to guess the next query id and perform DNS cache poisoning.
Notes
Package
Source: bind9 (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-12-05 20:43:26 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)