7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.199 Low
EPSS
Percentile
95.8%
The Berkeley Internet Name Domain (BIND) is an implementation of the
Domain Name System (DNS) protocols. BIND includes a DNS server (named); a
resolver library (routines for applications to use when interfacing with
DNS); and tools for verifying that the DNS server is operating correctly.
A flaw was found in the way BIND handled certain combinations of resource
records. A remote attacker could use this flaw to cause a recursive
resolver, or an authoritative server in certain configurations, to lockup.
(CVE-2012-5166)
Users of bind are advised to upgrade to these updated packages, which
correct this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | s390x | bind-utils | < 9.3.6-20.P1.el5_8.5 | bind-utils-9.3.6-20.P1.el5_8.5.s390x.rpm |
RedHat | 5 | ppc | bind-sdb | < 9.3.6-20.P1.el5_8.5 | bind-sdb-9.3.6-20.P1.el5_8.5.ppc.rpm |
RedHat | 5 | x86_64 | bind-utils | < 9.3.6-20.P1.el5_8.5 | bind-utils-9.3.6-20.P1.el5_8.5.x86_64.rpm |
RedHat | 5 | i386 | bind-libs | < 9.3.6-20.P1.el5_8.5 | bind-libs-9.3.6-20.P1.el5_8.5.i386.rpm |
RedHat | 5 | s390 | bind-devel | < 9.3.6-20.P1.el5_8.5 | bind-devel-9.3.6-20.P1.el5_8.5.s390.rpm |
RedHat | 6 | ppc64 | bind-sdb | < 9.8.2-0.10.rc1.el6_3.5 | bind-sdb-9.8.2-0.10.rc1.el6_3.5.ppc64.rpm |
RedHat | 5 | ia64 | bind-libs | < 9.3.6-20.P1.el5_8.5 | bind-libs-9.3.6-20.P1.el5_8.5.ia64.rpm |
RedHat | 6 | ppc64 | bind-devel | < 9.8.2-0.10.rc1.el6_3.5 | bind-devel-9.8.2-0.10.rc1.el6_3.5.ppc64.rpm |
RedHat | 5 | ia64 | bind-debuginfo | < 9.3.6-20.P1.el5_8.5 | bind-debuginfo-9.3.6-20.P1.el5_8.5.ia64.rpm |
RedHat | 6 | x86_64 | bind-sdb | < 9.8.2-0.10.rc1.el6_3.5 | bind-sdb-9.8.2-0.10.rc1.el6_3.5.x86_64.rpm |