5 - GLSA-200801-16

Executive Summary

Summary
Title	MaraDNS: CNAME Denial of Service

Informations
Name	GLSA-200801-16	First vendor Publication	2008-01-29
Vendor	Gentoo	Last vendor Modification	2008-01-29
Severity (Vendor)	Normal	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

MaraDNS is prone to a Denial of Service vulnerability impacting CNAME resolution.

Background

MaraDNS is a package that implements the Domain Name Service (DNS) with resolver and caching ability.

Description

Michael Krieger reported that a specially crafted DNS could prevent an authoritative canonical name (CNAME) record from being resolved because of an "improper rotation of resource records".

Impact

A remote attacker could send specially crafted DNS packets to a vulnerable server, making it unable to resolve CNAME records.

Workaround

Add "max_ar_chain = 2" to the "marac" configuration file.

Resolution

All MaraDNS users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-dns/maradns-1.2.12.09"

References

[ 1 ] CVE-2008-0061 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0061

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200801-16.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-200801-16.xml

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:18762

Oval ID:	oval:org.mitre.oval:def:18762
Title:	DSA-1445-1 maradns denial of service
Description:	Michael Krieger and Sam Trenholme discovered a programming error in MaraDNS, a simple security-aware Domain Name Service server, which might lead to denial of service through malformed DNS packets.
Family:	unix	Class:	patch
Reference(s):	DSA-1445-1 CVE-2008-0061	Version:	7
Platform(s):	Debian GNU/Linux 4.0	Product(s):	maradns
Definition Synopsis:
Debian GNU/Linux 4.0 is installed. AND maradns DPKG is earlier than 1.2.12.04-1etch2

Definition Id: oval:org.mitre.oval:def:8336

Oval ID:	oval:org.mitre.oval:def:8336
Title:	DSA-1445 maradns -- programming error
Description:	Michael Krieger and Sam Trenholme discovered a programming error in MaraDNS, a simple security-aware Domain Name Service server, which might lead to denial of service through malformed DNS packets. For the old stable distribution (sarge), this problem has been fixed in version 1.0.27-2. For the stable distribution (etch), this problem has been fixed in version 1.2.12.04-1etch2. For the unstable distribution (sid), this problem has been fixed in version 1.2.12.08-1. We recommend that you upgrade your maradns package.
Family:	unix	Class:	patch
Reference(s):	DSA-1445 CVE-2008-0061	Version:	3
Platform(s):	Debian GNU/Linux 4.0 Debian GNU/Linux 3.1	Product(s):	maradns
Definition Synopsis:
Release section Debian GNU/Linux 4.0 is installed. AND maradns is earlier than 1.2.12.04-1etch2 OR Release section Debian GNU/Linux 3.1 is installed AND maradns is earlier than 1.0.27-2

CPE : Common Platform Enumeration

Type	Description	Count
Application	Maradns cpe:2.3:a:maradns:maradns:1.3.07.03:::::::* cpe:2.3:a:maradns:maradns:1.3.07.02:::::::* cpe:2.3:a:maradns:maradns:1.3.07.01:::::::* cpe:2.3:a:maradns:maradns:1.3.07:::::::* cpe:2.3:a:maradns:maradns:1.3.06:::::::* cpe:2.3:a:maradns:maradns:1.3.05:::::::* cpe:2.3:a:maradns:maradns:1.3.04:::::::* cpe:2.3:a:maradns:maradns:1.3.03:::::::* cpe:2.3:a:maradns:maradns:1.3.02:::::::* cpe:2.3:a:maradns:maradns:1.3.01:::::::* cpe:2.3:a:maradns:maradns:1.2.12.07:::::::* cpe:2.3:a:maradns:maradns:1.2.12.06:::::::* cpe:2.3:a:maradns:maradns:1.2.12.05:::::::* cpe:2.3:a:maradns:maradns:1.2.12.04:::::::* cpe:2.3:a:maradns:maradns:1.2.12.03:::::::* cpe:2.3:a:maradns:maradns:1.2.12.02:::::::* cpe:2.3:a:maradns:maradns:1.2.12.01:::::::* cpe:2.3:a:maradns:maradns:1.0.39:::::::* cpe:2.3:a:maradns:maradns:1.0.38:::::::* cpe:2.3:a:maradns:maradns:1.0.37:::::::* cpe:2.3:a:maradns:maradns:1.0.36:::::::* cpe:2.3:a:maradns:maradns:1.0.35:::::::* cpe:2.3:a:maradns:maradns:1.0.34:::::::* cpe:2.3:a:maradns:maradns:1.0.33:::::::* cpe:2.3:a:maradns:maradns:1.0.32:::::::* cpe:2.3:a:maradns:maradns:1.0.31:::::::* cpe:2.3:a:maradns:maradns:1.0.30:::::::* cpe:2.3:a:maradns:maradns:1.0.29:::::::* cpe:2.3:a:maradns:maradns:1.0.28:::::::* cpe:2.3:a:maradns:maradns:1.0.27:::::::* cpe:2.3:a:maradns:maradns:1.0.26:::::::* cpe:2.3:a:maradns:maradns:1.0.25:::::::* cpe:2.3:a:maradns:maradns:1.0.24:::::::* cpe:2.3:a:maradns:maradns:1.0.23:::::::* cpe:2.3:a:maradns:maradns:1.0.22:::::::* cpe:2.3:a:maradns:maradns:1.0.21:::::::* cpe:2.3:a:maradns:maradns:1.0.20:::::::* cpe:2.3:a:maradns:maradns:1.0.19:::::::* cpe:2.3:a:maradns:maradns:1.0.18:::::::* cpe:2.3:a:maradns:maradns:1.0.17:::::::* cpe:2.3:a:maradns:maradns:1.0.16:::::::* cpe:2.3:a:maradns:maradns:1.0.15:::::::* cpe:2.3:a:maradns:maradns:1.0.14:::::::* cpe:2.3:a:maradns:maradns:1.0.13:::::::* cpe:2.3:a:maradns:maradns:1.0.12:::::::* cpe:2.3:a:maradns:maradns:1.0.11:::::::* cpe:2.3:a:maradns:maradns:1.0.10:::::::* cpe:2.3:a:maradns:maradns:1.0.09:::::::* cpe:2.3:a:maradns:maradns:1.0.08:::::::* cpe:2.3:a:maradns:maradns:1.0.07:::::::* cpe:2.3:a:maradns:maradns:1.0.06:::::::* cpe:2.3:a:maradns:maradns:1.0.05:::::::* cpe:2.3:a:maradns:maradns:1.0.04:::::::* cpe:2.3:a:maradns:maradns:1.0.03:::::::* cpe:2.3:a:maradns:maradns:1.0.02:::::::* cpe:2.3:a:maradns:maradns:1.0.01:::::::* cpe:2.3:a:maradns:maradns:1.0.00:::::::*	57

OpenVAS Exploits

Date	Description
2008-09-24	Name : Gentoo Security Advisory GLSA 200801-16 (maradns) File : nvt/glsa_200801_16.nasl
2008-09-04	Name : FreeBSD Ports: maradns File : nvt/freebsd_maradns.nasl
2008-01-17	Name : Debian Security Advisory DSA 1445-1 (maradns) File : nvt/deb_1445_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
39842	MaraDNS CNAME Record Resource Rotation DoS MaraDNS contains a flaw that may allow a remote denial of service. The issue is triggered due to handling of certain DNS packets that will cause a resource rotation, and will result in loss of availability as an authoritative CNAME record will not resolve.

Nessus® Vulnerability Scanner

Date	Description
2014-04-11	Name : The DNS server running on the remote host is affected by a denial of service ... File : maradns_1_3_07_04.nasl - Type : ACT_GATHER_INFO
2008-01-30	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200801-16.nasl - Type : ACT_GATHER_INFO
2008-01-14	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_f358de71bf6411dc928b0016179b2dd5.nasl - Type : ACT_GATHER_INFO
2008-01-04	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1445.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:35:30	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	2
CPE ID(s)	57
osvdb(s)	1
Openvas Exploit(s)	3
Nessus® Exploit(s)	4

	Related
5	CVE-2008-0061
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

5 - GLSA-200801-16

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU