USN-622-1: Bind vulnerability

Referenced CVEs: CVE-2008-1447Description: 
Ubuntu Security Notice USN-622-1 July 08, 2008
bind9 vulnerability

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS
Ubuntu 7.04
Ubuntu 7.10
Ubuntu 8.04 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
libdns21 1:9.3.2-2ubuntu1.5

Ubuntu 7.04:
libdns22 1:9.3.4-2ubuntu2.3

Ubuntu 7.10:
libdns32 1:9.4.1-P1-3ubuntu2

Ubuntu 8.04 LTS:
libdns35 1:9.4.2-10ubuntu0.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

Dan Kaminsky discovered weaknesses in the DNS protocol as implemented
by Bind. A remote attacker could exploit this to spoof DNS entries and
poison DNS caches. Among other things, this could lead to misdirected
email and web traffic.