CVE-2007-2926

Publication date 24 July 2007

Last updated 17 July 2025

Ubuntu priority

ISC BIND 9 through 9.5.0a5 uses a weak random number generator during generation of DNS query ids when answering resolver questions or sending NOTIFY messages to slave name servers, which makes it easier for remote attackers to guess the next query id and perform DNS cache poisoning.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
bind9	7.04 feisty	Fixed 9.3.4-2ubuntu2.1
	6.10 edgy	Fixed 9.3.2-2ubuntu3.2
	6.06 LTS dapper	Fixed 9.3.2-2ubuntu1.3

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-491-1
Bind vulnerability
25 July 2007

Other references

https://www.cve.org/CVERecord?id=CVE-2007-2926