← Back to team overview

ubuntu-mail-server team mailing list archive

  1. ubuntu-mail-server team
  2. Mailing list archive
  3. Message #00068

[Bug 1071139] [NEW] DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey message trust

  Thread PreviousDate PreviousThread Next 
*** This bug is a security vulnerability ***

Public security bug reported:

See http://www.kb.cert.org/vuls/id/268267, VU#268267

opendkim in squeeze, wheezy, sid offers no method to prevent use of keys
less than 1024 bits.  This is added in the new upstream release, 2.6.8, that
was released just for this issue.

** Affects: opendkim (Ubuntu)
     Importance: High
     Assignee: Scott Kitterman (kitterman)
         Status: Fix Committed

** Affects: opendkim (Ubuntu Lucid)
     Importance: Undecided
         Status: New

** Affects: opendkim (Ubuntu Natty)
     Importance: Undecided
         Status: New

** Affects: opendkim (Ubuntu Oneiric)
     Importance: Undecided
         Status: New

** Affects: opendkim (Ubuntu Precise)
     Importance: Undecided
         Status: New

** Affects: opendkim (Ubuntu Quantal)
     Importance: Undecided
         Status: New

** Affects: opendkim (Ubuntu Raring)
     Importance: High
     Assignee: Scott Kitterman (kitterman)
         Status: Fix Committed

** Affects: opendkim (Debian)
     Importance: Unknown
         Status: Unknown

** Information type changed from Public to Public Security

** Also affects: opendkim (Ubuntu Quantal)
   Importance: Undecided
       Status: New

** Also affects: opendkim (Ubuntu Natty)
   Importance: Undecided
       Status: New

** Also affects: opendkim (Ubuntu Precise)
   Importance: Undecided
       Status: New

** Also affects: opendkim (Ubuntu Oneiric)
   Importance: Undecided
       Status: New

** Also affects: opendkim (Ubuntu Lucid)
   Importance: Undecided
       Status: New

** Also affects: opendkim (Ubuntu Raring)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Mail Server, which is subscribed to opendkim in Ubuntu.
https://bugs.launchpad.net/bugs/1071139

Title:
  DomainKeys Identified Mail (DKIM) Verifiers may inappropriately convey
  message trust

Status in “opendkim” package in Ubuntu:
  Fix Committed
Status in “opendkim” source package in Lucid:
  New
Status in “opendkim” source package in Natty:
  New
Status in “opendkim” source package in Oneiric:
  New
Status in “opendkim” source package in Precise:
  New
Status in “opendkim” source package in Quantal:
  New
Status in “opendkim” source package in Raring:
  Fix Committed
Status in “opendkim” package in Debian:
  Unknown

Bug description:
  See http://www.kb.cert.org/vuls/id/268267, VU#268267

  opendkim in squeeze, wheezy, sid offers no method to prevent use of keys
  less than 1024 bits.  This is added in the new upstream release, 2.6.8, that
  was released just for this issue.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/opendkim/+bug/1071139/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next