Threat Level: green Handler on Duty: Renato Marinho

SANS ISC: InfoSec Handlers Diary Blog - BIND Security Advisory (DNSSEC only) InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

BIND Security Advisory (DNSSEC only)

Published: 2009-11-24
Last Updated: 2009-11-24 17:19:44 UTC
by John Bambenek (Version: 1)
0 comment(s)

The other ISC (Internet Systems Consortium) has released a security advisory on BIND and security patches for nameservers running with DNSSEC validation enabled. Essentially it is possible for inappropriate caching of records from the additional records section of a query response. Typically, however, resolvers don't query in such a way as to make this a wide-impacting problem for the bulk of users.

You can read the advisory here.

Upgrade to 9.4.3-P4, 9.5.2-P1 or 9.6.1-P2.

--
John Bambenek
bambenek at gmail /dot/ com

0 comment(s)
Diary Archives