Unrated severityNVD Advisory· Published Nov 16, 2014· Updated May 6, 2026
CVE-2014-3209
CVE-2014-3209
Description
The ldns-keygen tool in ldns 1.6.x uses the current umask to set the privileges of the private key, which might allow local users to obtain the private key by reading the file.
Affected products
12cpe:2.3:a:nlnetlabs:ldns:1.6.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:nlnetlabs:ldns:1.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.8:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.9:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.10:*:*:*:*:*:*:*
- cpe:2.3:a:nlnetlabs:ldns:1.6.11:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.