LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Eridani alert ERISA-2002:035 (bind)



From:
    	      Eridani Star System <linux@eridani.co.uk>


To:
    	      eridani-announce@eridani.co.uk


Subject:
    	      [Eridani-Announce] ERISA-2002:035 - bind


Date:
    	      Fri, 9 Aug 2002 23:09:08 +0100 (BST)



=========================================================================
		ERIDANI LINUX - SECURITY ANNOUNCEMENT
=========================================================================

Package:	bind
Summary:	Buffer overflow in DNS resolver
Date:		2002-08-09
ID:		ERISA-2002:035

=========================================================================

Problem description:

  Many implementations of the DNS resolver libraries (part of BIND) are
  vulnerable to a buffer overflow condition.  Applications linked against
  these libraries may be affected by this.  An attacker who is able to send
  malicious DNS responses could potentially exploit this to execute
  arbitrary code or cause a denial of service situation on a vulnerable
  system.

-------------------------------------------------------------------------
Updated packages:

  08b175596b35d8bba0b97838daf274f9  bind-9.2.1-2.src.rpm

  8d23ec1c8e04bb411a32ab667c77b9b0  bind-9.2.1-2.i386.rpm
  0b0726534e79dd4d8e905dfbd95d4db8  bind-devel-9.2.1-2.i386.rpm
  3eeacf064810b7f6bb7a610a265c141d  bind-utils-9.2.1-2.i386.rpm

-------------------------------------------------------------------------
References:

  http://www.kb.cert.org/vuls/id/803539
  http://online.securityfocus.com/bid/5100
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0651

=========================================================================

Packages available from ftp://ftp.eridani.co.uk/pub/Aeryn/
or by HTTP from http://ftp.eridani.co.uk/

Packages are signed with our GNU GPG key, also on our FTP site.

Users of releases of Eridani Linux prior to 6.3 are advised to download
the source RPM and rebuild for their system.

Copyright (C)2002 Eridani Star System

-- Michael "Soruk" McConnell                       http://www.eridani.co.uk
Eridani Linux  --  The Most Up-to-Date Red Hat-based Linux CDROMs Available
Email: linux@eridani.co.uk -- Also Debian, Slackware, Mandrake and more...

_______________________________________________
Eridani-Announce mailing list
To be removed from this list email linux@eridani.co.uk requesting removal.
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds