Package name
bind
Date
2011-11-17
Advisory ID
MDVSA-2011:176-1
Affected versions
MES5 i586 , MES5 x86_64 , 2010.1 i586 , 2010.1 x86_64

Problem description

A vulnerability was discovered and corrected in bind:

Cache lookup could return RRSIG data associated with nonexistent
records, leading to an assertion failure. [ISC RT #26590]
(CVE-2011-4313).

The updated packages have been upgraded to bind 9.7.4-P1 and 9.8.1-P1
which is not vulnerable to this issue.

Update:

Packages provided for Mandriva Enterprise Server 5.2 and Mandriva
Linux 2010.2 with the MDVSA-2011:176 advisory had a faulty release
number effectively preventing installation without excessive force
due to a previous packaging mistake. This advisory provides corrected
packages to address the problem.

Updated packages

MES5 i586

 b6676b5284906af26c44c4ed173d0f6c  mes5/i586/bind-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
 580560394efdab1e91334b34b1812e44  mes5/i586/bind-devel-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
 f43f0e1f02324df8dafde72a65d38b3f  mes5/i586/bind-doc-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm
 4b1e8f8add955dd7c0f591ab9f0fc9fb  mes5/i586/bind-utils-9.7.4-0.P1.1.1mdvmes5.2.i586.rpm 
 f75760bf80b9a52f0c5fb645655d42a0  mes5/SRPMS/bind-9.7.4-0.P1.1.1mdvmes5.2.src.rpm

MES5 x86_64

 a52c45edac0862179f5dba3fdf6efa6c  mes5/x86_64/bind-9.7.4-0.P1.1.1mdvmes5.2.x86_64.rpm
 bfb6e06d29c2491f3df0a6f3f80cb79d  mes5/x86_64/bind-devel-9.7.4-0.P1.1.1mdvmes5.2.x86_64.rpm
 b0bd551c27f66a8707c2e919a589871b  mes5/x86_64/bind-doc-9.7.4-0.P1.1.1mdvmes5.2.x86_64.rpm
 e23d7def14aa0dd2576c84b687e7f638  mes5/x86_64/bind-utils-9.7.4-0.P1.1.1mdvmes5.2.x86_64.rpm 
 f75760bf80b9a52f0c5fb645655d42a0  mes5/SRPMS/bind-9.7.4-0.P1.1.1mdvmes5.2.src.rpm

2010.1 i586

 3fb7281557129abdc7b8b4c8444f59fd  2010.1/i586/bind-9.7.4-0.P1.1.1mdv2010.2.i586.rpm
 00546a388a9a527617148e3425465c46  2010.1/i586/bind-devel-9.7.4-0.P1.1.1mdv2010.2.i586.rpm
 ef60576b38d50522fd6f6701297052cc  2010.1/i586/bind-doc-9.7.4-0.P1.1.1mdv2010.2.i586.rpm
 c15cc0d3c9ce28780cb5baaafa6adce0  2010.1/i586/bind-utils-9.7.4-0.P1.1.1mdv2010.2.i586.rpm 
 a361121f633b4ede7a442fc26473fe86  2010.1/SRPMS/bind-9.7.4-0.P1.1.1mdv2010.2.src.rpm

2010.1 x86_64

 71181d5fe80837564b9e87f5fd0a1d3d  2010.1/x86_64/bind-9.7.4-0.P1.1.1mdv2010.2.x86_64.rpm
 10f9fd6aee77a13875b4c27225a9d040  2010.1/x86_64/bind-devel-9.7.4-0.P1.1.1mdv2010.2.x86_64.rpm
 8b533341304c36ef8c4d289877254279  2010.1/x86_64/bind-doc-9.7.4-0.P1.1.1mdv2010.2.x86_64.rpm
 419adf4e87b741393219846754696c8a  2010.1/x86_64/bind-utils-9.7.4-0.P1.1.1mdv2010.2.x86_64.rpm 
 a361121f633b4ede7a442fc26473fe86  2010.1/SRPMS/bind-9.7.4-0.P1.1.1mdv2010.2.src.rpm

References