1
PublicDateAtUSN: 2014-11-15
2
Candidate: CVE-2014-3209
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3209
6
https://usn.ubuntu.com/usn/usn-3491-1
8
The ldns-keygen tool in ldns 1.6.x uses the current umask to set the
9
privileges of the private key, which might allow local users to obtain the
10
private key by reading the file.
13
mdeslaur> ldns-keygen is in the ldnsutils package in universe
15
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746758
16
https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=573
18
Discovered-by: Leon Weber
22
upstream: https://git.nlnetlabs.nl/ldns/commit/?h=develop&id=169f38c1e25750f935838b670871056428977e6b
23
Tags_ldns: universe-binary
24
upstream_ldns: released (1.6.17-4)
25
lucid_ldns: ignored (reached end-of-life)
26
precise_ldns: ignored (reached end-of-life)
27
precise/esm_ldns: DNE (precise was needed)
28
quantal_ldns: ignored (reached end-of-life)
29
saucy_ldns: ignored (reached end-of-life)
30
trusty_ldns: released (1.6.17-1ubuntu0.1)
31
utopic_ldns: ignored (reached end-of-life)
32
vivid_ldns: ignored (reached end-of-life)
33
vivid/stable-phone-overlay_ldns: DNE
34
vivid/ubuntu-core_ldns: DNE
35
wily_ldns: ignored (reached end-of-life)
36
xenial_ldns: not-affected (1.6.17-8)
37
yakkety_ldns: ignored (reached end-of-life)
38
zesty_ldns: not-affected (1.7.0-1ubuntu1)
39
artful_ldns: not-affected (1.7.0-1ubuntu1)
40
devel_ldns: not-affected (1.7.0-3ubuntu1)