4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.97 High
EPSS
Percentile
99.7%
CentOS Errata and Security Advisory CESA-2007:0044-01
ISC BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols.
A flaw was found in the way BIND processed certain DNS query responses. On
servers that had enabled DNSSEC validation, this could allow an remote
attacker to cause a denial of service. (CVE-2007-0494)
For users of Red Hat Enterprise Linux 3, the previous BIND update caused an
incompatible change to the default configuration that resulted in rndc not
sharing the key with the named daemon. This update corrects this bug and
restores the behavior prior to that update.
Updating the bind package in Red Hat Enterprise Linux 3 could result in
nonfunctional configuration in case the bind-libs package was not updated.
This update corrects this bug by adding the correct dependency on bind-libs.
Users of BIND are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-February/075668.html
Affected packages:
bind
bind-devel
bind-utils
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 2 | i386 | bind | < 9.2.1-8.EL2 | bind-9.2.1-8.EL2.i386.rpm |
CentOS | 2 | i386 | bind-devel | < 9.2.1-8.EL2 | bind-devel-9.2.1-8.EL2.i386.rpm |
CentOS | 2 | i386 | bind-utils | < 9.2.1-8.EL2 | bind-utils-9.2.1-8.EL2.i386.rpm |