5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.104 Low
EPSS
Percentile
94.4%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.
A flaw was discovered in the way BIND handled certain DNS queries, which
caused it to cache an invalid record. A remote attacker could use this
flaw to send repeated queries for this invalid record, causing the
resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)
Users of bind are advised to upgrade to these updated packages, which
resolve this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 4 | ppc | bind-utils | < 9.2.4-38.el4 | bind-utils-9.2.4-38.el4.ppc.rpm |
RedHat | 4 | x86_64 | bind-libs | < 9.2.4-38.el4 | bind-libs-9.2.4-38.el4.x86_64.rpm |
RedHat | 4 | ia64 | bind-libs | < 9.2.4-38.el4 | bind-libs-9.2.4-38.el4.ia64.rpm |
RedHat | 4 | ia64 | bind | < 9.2.4-38.el4 | bind-9.2.4-38.el4.ia64.rpm |
RedHat | 4 | i386 | bind-utils | < 9.2.4-38.el4 | bind-utils-9.2.4-38.el4.i386.rpm |
RedHat | 4 | s390x | bind-utils | < 9.2.4-38.el4 | bind-utils-9.2.4-38.el4.s390x.rpm |
RedHat | 4 | ppc64 | bind-libs | < 9.2.4-38.el4 | bind-libs-9.2.4-38.el4.ppc64.rpm |
RedHat | 4 | ia64 | bind-devel | < 9.2.4-38.el4 | bind-devel-9.2.4-38.el4.ia64.rpm |
RedHat | 4 | s390x | bind-devel | < 9.2.4-38.el4 | bind-devel-9.2.4-38.el4.s390x.rpm |
RedHat | 4 | i386 | bind-devel | < 9.2.4-38.el4 | bind-devel-9.2.4-38.el4.i386.rpm |