bind security update

ID CESA-2015:0672
Type centos
Reporter CentOS Project
Modified 2015-04-01T03:13:25


CentOS Errata and Security Advisory CESA-2015:0672

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.

A flaw was found in the way BIND handled trust anchor management. A remote attacker could use this flaw to cause the BIND daemon (named) to crash under certain conditions. (CVE-2015-1349)

Red Hat would like to thank ISC for reporting this issue.

All bind users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the update, the BIND daemon (named) will be restarted automatically.

Merged security bulletin from advisories:

Affected packages: bind bind-chroot bind-devel bind-libs bind-libs-lite bind-license bind-lite-devel bind-sdb bind-sdb-chroot bind-utils

Upstream details at: