MDVSA-2011:104 -- Mandriva bindID: oval:org.secpod.oval:def:301032 | Date: (C)2012-01-07 (M)2023-12-07 |
Class: PATCH | Family: unix |
A vulnerability has been identified and fixed in ISC BIND: Off-by-one error in named in ISC BIND 9.x before 9.7.3-P1, 9.8.x before 9.8.0-P2, 9.4-ESV before 9.4-ESV-R4-P1, and 9.6-ESV before 9.6-ESV-R4-P1 allows remote DNS servers to cause a denial of service via a negative response containing large RRSIG RRsets . Packages for 2009.0 are provided as of the Extended Maintenance Program. For 2010.2 ISC BIND was upgraded to 9.7.3-P1 which is not vulnerable to this issue.
Platform: |
Mandriva Linux 2010.1 |
Mandriva Linux 2009.0 |