Red Hat Bugzilla – Bug 488594
dkim-milter: DNS public key DoS
Last modified: 2009-03-21 21:13:32 EDT
dkim-milter does not properly handle verification of messages signed with a key that has been revoked in DNS (the p= flag set to an empty string).
A CVE has been requested, but not assigned yet.
This has been fixed upstream in 2.8.1, which is shipped in F10, but F9 has 2.5.1 which would be vulnerable to this issue.
Created dkim-milter tracking bugs for this issue
Affects: F9 [bug #488595]
Created attachment 334070 [details]
Upstream patch to fix the issue
dkim-milter-2.8.1-1.fc9 has been submitted as an update for Fedora 9.
dkim-milter-2.8.1-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.