MDVSA-2012:177 -- Mandriva bindID: oval:org.secpod.oval:def:302982 | Date: (C)2012-12-07 (M)2023-12-07 |
Class: PATCH | Family: unix |
A vulnerability was discovered and corrected in bind: BIND 9 nameservers using the DNS64 IPv6 transition mechanism are vulnerable to a software defect that allows a crafted query to crash the server with a REQUIRE assertion failure. Remote exploitation of this defect can be achieved without extensive effort, resulting in a denial-of-service vector against affected servers . The updated packages have been upgraded to bind 9.8.4-P1 which is not vulnerable to this issue.
Platform: |
Mandriva Linux 2011.0 |