RHSA-2013:0690-01 -- Redhat bind97ID: oval:org.secpod.oval:def:501035 | Date: (C)2013-04-01 (M)2023-12-07 |
Class: PATCH | Family: unix |
The Berkeley Internet Name Domain is an implementation of the Domain Name System protocols. BIND includes a DNS server ; a resolver library ; and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the libdns library. A remote attacker could use this flaw to send a specially-crafted DNS query to named that, when processed, would cause named to use an excessive amount of memory, or possibly crash. Note: This update disables the syntax checking of NAPTR resource records. All bind97 users are advised to upgrade to these updated packages, which contain a patch to correct this issue. After installing the update, the BIND daemon will be restarted automatically.
Platform: |
Red Hat Enterprise Linux 5 |