Security update for bind (important)

2016-03-19T16:12:36
ID OPENSUSE-SU-2016:0834-1
Type suse
Reporter Suse
Modified 2016-03-19T16:12:36

Description

This update for bind fixes the following issues:

Fix two assertion failures that can lead to a remote denial of service attack: * CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. (bsc#970072) * CVE-2016-1286: An error when parsing signature records for DNAME records having specific properties can lead to named exiting due to an assertion failure in resolver.c or db.c. (bsc#970073)