Support / Sécurité / Annonces de sécurité / Mandriva Linux 2007.1 / MDKSA-2007:100

Nom du paquet: bind
Date: 2007-05-09
Advisory ID: MDKSA-2007:100
Affected versions: 2007.1 i586 , 2007.1 x86_64

Problem description

A vulnerability in ISC BIND 9.4.0, when recursion is enabled, could
allow a remote attacker to cause a denial of service (daemon exit)
via a certain sequence of queries.

BIND 9.4.1, which corrects this issue, is provided with this update.

Updated packages

2007.1 i586

 57cb395e90aeb74f2498f2e154172465  2007.1/i586/bind-9.4.1-0.1mdv2007.1.i586.rpm
 69b03c9b0102ad38a66c7fa83494c4b9  2007.1/i586/bind-devel-9.4.1-0.1mdv2007.1.i586.rpm
 e9b334b02b3a4e41e5d3420ad6fea55b  2007.1/i586/bind-utils-9.4.1-0.1mdv2007.1.i586.rpm 
 80651459f8b9eb8972c272ea00d50303  2007.1/SRPMS/bind-9.4.1-0.1mdv2007.1.src.rpm

2007.1 x86_64

 5b63e8711242930791674a1c923e336c  2007.1/x86_64/bind-9.4.1-0.1mdv2007.1.x86_64.rpm
 71985147d455aa30b2eb96d40b4b2bf2  2007.1/x86_64/bind-devel-9.4.1-0.1mdv2007.1.x86_64.rpm
 3015360a5eea54160a5a5c63bdbe1228  2007.1/x86_64/bind-utils-9.4.1-0.1mdv2007.1.x86_64.rpm 
 80651459f8b9eb8972c272ea00d50303  2007.1/SRPMS/bind-9.4.1-0.1mdv2007.1.src.rpm

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2241