[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Internet Systems Consortium Security Advisory: BIND: Self Check Failing

To: bind-announce@xxxxxxx
Subject: Internet Systems Consortium Security Advisory: BIND: Self Check Failing
From: Mark Andrews <Mark_Andrews@xxxxxxx>
Date: Wed, 26 Jan 2005 15:55:48 +1100
List-id: <bind-announce.isc.org>
List-unsubscribe: <mailto:bind-announce-request@isc.org?Subject=unsubscribe>
Sender: bind-announce-bounce@xxxxxxx

		Internet Systems Consortium Security Advisory.
			BIND: Self Check Failing
			     18 November 2004

        Versions affected:
                BIND 9.3.0
        Severity: LOW
        Exploitable: Remotely
        Type: denial of service
	Description:

		An incorrect assumption in the validator (authvalidated)
		can result in a REQUIRE (internal consistancy) test failing
		and named exiting.

	Workaround:

		Turn off dnssec validation (off by default) at
		the options/view level.

			dnssec-enable no;

	Fix:

		Upgrade to BIND 9.3.1
		http://www.isc.org/sw/bind/

	See also:
		http://www.kb.cert.org/vuls/id/938617

Prev by Date: BIND 9.2.5beta2 is now available.
Next by Date: Internet Systems Consortium Security Advisory: BIND: Buffer Overrun (q_usedns).
Previous by thread: BIND 9.2.5beta2 is now available.
Next by thread: Internet Systems Consortium Security Advisory: BIND: Buffer Overrun (q_usedns).
Index(es):
- Date
- Thread