Scientific Linux alert SL-bind-20121015 (bind97) [LWN.net]


From:
    	       Connie Sieh <csieh@fnal.gov> 
To:
    	       scientific <scientific-linux-errata@fnal.gov> 
Subject:
    	       Security ERRATA Important: bind97 on SL5.x i386/x86_64 
Date:
    	       Mon, 15 Oct 2012 16:34:21 -0500
Message-ID:
    	       <alpine.LRH.2.02.1210151633550.18386@dhcp-131-225-22-38.dhcp.fnal.gov>
Archive-link:
    	       Article, Thread
              
Synopsis:          Important: bind97 security update
Issue Date:        2012-10-12
CVE Numbers:       CVE-2012-5166
-

A flaw was found in the way BIND handled certain combinations of resource
records. A remote attacker could use this flaw to cause a recursive
resolver, or an authoritative server in certain configurations, to lockup.
(CVE-2012-5166)

After installing the update, the BIND daemon (named) will be restarted
automatically.
--

SL5
   x86_64
     bind97-9.7.0-10.P2.el5_8.4.x86_64.rpm
     bind97-chroot-9.7.0-10.P2.el5_8.4.x86_64.rpm
     bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm
     bind97-devel-9.7.0-10.P2.el5_8.4.x86_64.rpm
     bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm
     bind97-libs-9.7.0-10.P2.el5_8.4.x86_64.rpm
     bind97-utils-9.7.0-10.P2.el5_8.4.x86_64.rpm
   i386
     bind97-9.7.0-10.P2.el5_8.4.i386.rpm
     bind97-chroot-9.7.0-10.P2.el5_8.4.i386.rpm
     bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm
     bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm
     bind97-utils-9.7.0-10.P2.el5_8.4.i386.rpm

- Scientific Linux Development Team
(Log in to post comments)