DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 17th November 2011
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,147
Thanked 182 Times in 149 Posts
Default BIND security update protects against serious server crash

From http://www.theregister.co.uk/2011/11..._a_bind_again/

Quote:
Updated The Internet Systems Consortium is advising BIND users to update immediately to protect against a bug that may already be under attack to crash vulnerable servers.

The ISC says an unidentified network event caused BIND 9 resolvers to cache an invalid record, and when subsequent queries requested the invalid record, the servers crashed with the following assertion failure:

INSIST(! dns_rdataset_isassociated(sigrdataset)).

It’s also apparently being exploited to attack networks, with multiple members of the BIND users email list from Germany, France and the US reporting simultaneous crashes across multiple servers.

The ISC describes the bug as a potential zero-day exploit with no workaround, and urges immediate upgrade to BIND 9.8.1-P1, 9.7.4-P1, 9.6-ESV-R5-P1, or 9.4-ESV-R5-P1.
Also see http://www.isc.org/software/bind/adv.../cve-2011-4313
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
DNSSEC signature can crash Bind name servers J65nko News 0 27th May 2011 07:34 PM
Other Security update for ProFTPD FTP server J65nko News 0 3rd November 2010 05:55 PM
Update for Apache 2.2 web server closes various security holes J65nko News 0 9th March 2010 08:50 PM
FreeBSD Three FreeBSD security anouncements (Bind, ntpd and ZFS) J65nko News 0 6th January 2010 11:30 PM
How to Crash my FreeBSD server - run portsdb Bruco FreeBSD Ports and Packages 15 1st September 2008 06:28 PM


All times are GMT. The time now is 06:11 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick