MGASA-2014-0212

Source
https://advisories.mageia.org/MGASA-2014-0212.html
Import Source
https://advisories.mageia.org/MGASA-2014-0212.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2014-0212
Related
Published
2014-05-10T19:38:37Z
Modified
2014-05-10T19:38:33Z
Summary
Updated ldns package fixes CVE-2014-3209
Details

Updated ldns packages fix security vulnerability:

ldns-keygen creates a private key with the default permissions according to the users umask, which in most cases will cause the private key to be world-readable (CVE-2014-3209).

References
Credits

Affected packages

Mageia:4 / ldns

Package

Name
ldns
Purl
pkg:rpm/mageia/ldns?distro=mageia-4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.16-3.1.mga4

Ecosystem specific

{
    "section": "core"
}

Mageia:3 / ldns

Package

Name
ldns
Purl
pkg:rpm/mageia/ldns?distro=mageia-3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.6.16-2.1.mga3

Ecosystem specific

{
    "section": "core"
}