Description
The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query results.
Affected products
- gnu / glibc2.0 – 2.0
- gnu / glibc2.1 – 2.1
- gnu / glibc2.1.1 – 2.1.1
- gnu / glibc2.1.2 – 2.1.2
- gnu / glibc2.1.3 – 2.1.3
- ISC / BIND8.2 – 8.2
- ISC / BIND8.2.1 – 8.2.1
- ISC / BIND8.2.2 – 8.2.2