[v2.5] ldns: private key becomes to be world-readable (CVE-2014-3209)
ldns-keygen creates a private key with the default permissions according to the users umask, which in most cases will cause the private key to be world-readable.
http://advisories.mageia.org/MGASA-2014-0212.html
https://www.nlnetlabs.nl/bugs-script/show\_bug.cgi?id=573
COMMIT:
http://git.nlnetlabs.nl/ldns/commit/?h=develop&id=169f38c1e25750f935838b670871056428977e6b
(from redmine: issue id 2925, created on 2014-05-21, closed on 2014-05-23)
- Relations:
- parent #2924 (closed)
- Changesets:
- Revision 6073c5a9 by Natanael Copa on 2014-05-22T14:59:28Z:
main/ldns: upgrade to 1.6.17 and security fix for CVE-2014-3209
fixes #2925