MDVSA-2012:152

Package name

bind

Date

2012-09-13

Advisory ID

MDVSA-2012:152

Affected versions

MES5 i586 , MES5 x86_64

Problem description

A vulnerability was discovered and corrected in bind:

A nameserver can be caused to exit with a REQUIRE exception if it can
be induced to load a specially crafted resource record (CVE-2012-4244).

The updated packages have been upgraded to bind 9.7.6-P3 which is
not vulnerable to this issue.

Updated packages

MES5 i586

 5b691ca2cc19dcf18a841791ad10f62b  mes5/i586/bind-9.7.6-0.0.P3.0.1mdvmes5.2.i586.rpm
 11c2dba8ff395203beb91c7e470813b8  mes5/i586/bind-devel-9.7.6-0.0.P3.0.1mdvmes5.2.i586.rpm
 3757761697422d30d9e24ef10877c32f  mes5/i586/bind-doc-9.7.6-0.0.P3.0.1mdvmes5.2.i586.rpm
 48c44a68f78ae98b7d907749e9e68b8b  mes5/i586/bind-utils-9.7.6-0.0.P3.0.1mdvmes5.2.i586.rpm 
 f08aeaacc18d0ec4af563e31ce3c7eff  mes5/SRPMS/bind-9.7.6-0.0.P3.0.1mdvmes5.2.src.rpm

MES5 x86_64

 ddf2c0b1bf47087d1972188071b43db4  mes5/x86_64/bind-9.7.6-0.0.P3.0.1mdvmes5.2.x86_64.rpm
 ea0fca1831d2dbe5f18928683d01fb1f  mes5/x86_64/bind-devel-9.7.6-0.0.P3.0.1mdvmes5.2.x86_64.rpm
 bacdf206990e76930d5b37b476615c34  mes5/x86_64/bind-doc-9.7.6-0.0.P3.0.1mdvmes5.2.x86_64.rpm
 da90e2ef8b97ee560cd4f5c41bf4a6c2  mes5/x86_64/bind-utils-9.7.6-0.0.P3.0.1mdvmes5.2.x86_64.rpm 
 f08aeaacc18d0ec4af563e31ce3c7eff  mes5/SRPMS/bind-9.7.6-0.0.P3.0.1mdvmes5.2.src.rpm

References

• ftp://ftp.isc.org/isc/bind9/9.7.6-P3/CHANGES
• https://kb.isc.org/article/AA-00778
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4244