Security
Security
MyDNS contains a vulnerability that may lead to a Denial of Service attack.
| Package | net-dns/mydns on all architectures |
|---|---|
| Affected versions | < 1.1.0 |
| Unaffected versions | >= 1.1.0 |
MyDNS is a DNS server using a MySQL database as a backend. It is designed to allow for fast updates and small resource usage.
MyDNS contains an unspecified flaw that may allow a remote Denial of Service.
An attacker could cause a Denial of Service by sending malformed DNS queries to the MyDNS server.
There is no known workaround at this time.
All MyDNS users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/mydns-1.1.0"
Release date
January 30, 2006
Latest revision
January 30, 2006: 01
Severity
normal
Exploitable
remote
Bugzilla entries