Updated ldns package fixes CVE-2014-3209
Publication date: 10 May 2014Modification date: 10 May 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3209
Description
Updated ldns packages fix security vulnerability:
ldns-keygen creates a private key with the default permissions according
to the users umask, which in most cases will cause the private key to be
world-readable (CVE-2014-3209).
References
SRPMS
3/core
- ldns-1.6.16-2.1.mga3
4/core
- ldns-1.6.16-3.1.mga4