bind9 - security update

2014-12-1500:00:00

Google

osv.dev

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

This update fixes a denial of service vulnerability in BIND, a DNS server.

By making use of maliciously-constructed zones or a rogue server, an attacker
could exploit an oversight in the code BIND 9 used to follow delegations in
the Domain Name Service, causing BIND to issue unlimited queries in an attempt
to follow the delegation.

This can lead to resource exhaustion and denial of service (up to and
including termination of the named server process).

For Debian 6 Squeeze, these issues have been fixed in bind9 version 9.7.3.dfsg-1~squeeze13

CPENameOperatorVersion
bind9eq1:9.7.3.dfsg-1~squeeze3~bpo50+1
bind9eq1:9.7.3.dfsg-1~squeeze7
bind9eq1:9.7.3.dfsg-1~squeeze11
bind9eq1:9.7.3.dfsg-1~squeeze2~bpo50+1
bind9eq1:9.7.3.dfsg-1~squeeze3
bind9eq1:9.7.3.dfsg-1~squeeze9
bind9eq1:9.7.3.dfsg-1~squeeze6
bind9eq1:9.7.3.dfsg-1~squeeze4
bind9eq1:9.7.3.dfsg-1~squeeze8
bind9eq1:9.7.3.dfsg-1~squeeze5

Name	Operator	Version
bind9	eq	1:9.7.3.dfsg-1~squeeze3~bpo50+1
bind9	eq	1:9.7.3.dfsg-1~squeeze7
bind9	eq	1:9.7.3.dfsg-1~squeeze11
bind9	eq	1:9.7.3.dfsg-1~squeeze2~bpo50+1
bind9	eq	1:9.7.3.dfsg-1~squeeze3
bind9	eq	1:9.7.3.dfsg-1~squeeze9
bind9	eq	1:9.7.3.dfsg-1~squeeze6
bind9	eq	1:9.7.3.dfsg-1~squeeze4
bind9	eq	1:9.7.3.dfsg-1~squeeze8
bind9	eq	1:9.7.3.dfsg-1~squeeze5