Create an account

Subscribe to LWN

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

bind: denial of service

Package(s):

bind

CVE #(s):

CVE-2006-4095 CVE-2006-4096

Created:

September 7, 2006

Updated:

February 1, 2007

Description:

Bind has two denial of service vulnerabilities.

Recursive servers queries for SIG records will trigger an assertion failure if more than one RR set is returned.

An INSIST failure can be triggered by sending a large number of recursive queries.

Alerts:

Fedora	FEDORA-2007-164	2007-01-31
Gentoo	200609-11	2006-09-15
Slackware	SSA:2006-257-01	2006-09-15
Fedora	FEDORA-2006-966	2006-09-11
Debian	DSA-1172-1	2006-09-09
Mandriva	MDKSA-2006:163	2006-09-08
rPath	rPSA-2006-0166-1	2006-09-08
Ubuntu	USN-343-1	2006-09-07
OpenPKG	OpenPKG-SA-2006.019	2006-09-07

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds