Advisories ยป MGASA-2014-0212

Updated ldns package fixes CVE-2014-3209

Publication date: 10 May 2014
Modification date: 10 May 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3209

Description

Updated ldns packages fix security vulnerability:

ldns-keygen creates a private key with the default permissions according
to the users umask, which in most cases will cause the private key to be
world-readable (CVE-2014-3209).
                

References

SRPMS

3/core

4/core