5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.104 Low
EPSS
Percentile
94.4%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.
A flaw was discovered in the way BIND handled certain DNS queries, which
caused it to cache an invalid record. A remote attacker could use this
flaw to send repeated queries for this invalid record, causing the
resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)
Users of bind are advised to upgrade to these updated packages, which
resolve this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | ppc | bind | < 9.3.6-16.P1.el5_7.1 | bind-9.3.6-16.P1.el5_7.1.ppc.rpm |
RedHat | 5 | s390x | bind-sdb | < 9.3.6-16.P1.el5_7.1 | bind-sdb-9.3.6-16.P1.el5_7.1.s390x.rpm |
RedHat | 6 | x86_64 | bind-libs | < 9.7.3-2.el6_1.P3.3 | bind-libs-9.7.3-2.el6_1.P3.3.x86_64.rpm |
RedHat | 5 | ia64 | bind | < 9.3.6-16.P1.el5_7.1 | bind-9.3.6-16.P1.el5_7.1.ia64.rpm |
RedHat | 6 | i686 | bind-utils | < 9.7.3-2.el6_1.P3.3 | bind-utils-9.7.3-2.el6_1.P3.3.i686.rpm |
RedHat | 6 | ppc64 | bind-sdb | < 9.7.3-2.el6_1.P3.3 | bind-sdb-9.7.3-2.el6_1.P3.3.ppc64.rpm |
RedHat | 6 | x86_64 | bind-debuginfo | < 9.7.3-2.el6_1.P3.3 | bind-debuginfo-9.7.3-2.el6_1.P3.3.x86_64.rpm |
RedHat | 5 | s390x | bind-utils | < 9.3.6-16.P1.el5_7.1 | bind-utils-9.3.6-16.P1.el5_7.1.s390x.rpm |
RedHat | 6 | s390x | bind-libs | < 9.7.3-2.el6_1.P3.3 | bind-libs-9.7.3-2.el6_1.P3.3.s390x.rpm |
RedHat | 5 | ia64 | caching-nameserver | < 9.3.6-16.P1.el5_7.1 | caching-nameserver-9.3.6-16.P1.el5_7.1.ia64.rpm |