Lucene search
RedHatRHSA-2012:1267HistorySep 14, 2012 - 12:00 a.m.
(RHSA-2012:1267) Important: bind security and bug fix update
2012-09-1400:00:00
access.redhat.com
33
EPSS
0.331
Percentile
97.1%
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.
A flaw was found in the way BIND handled resource records with a large
RDATA value. A malicious owner of a DNS domain could use this flaw to
create specially-crafted DNS resource records, that would cause a recursive
resolver or secondary server to exit unexpectedly with an assertion
failure. (CVE-2012-4244)
This update also fixes the following bug:
- The bind-chroot-admin script, executed when upgrading the bind-chroot
package, failed to correctly update the permissions of the
/var/named/chroot/etc/named.conf file. Depending on the permissions of the
file, this could have prevented named from starting after installing
package updates. With this update, bind-chroot-admin correctly updates the
permissions and ownership of the file. (BZ#857056)
Users of bind are advised to upgrade to these updated packages, which
correct these issues. After installing the update, the BIND daemon (named)
will be restarted automatically.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | x86_64 | bind-libs | < 9.3.6-20.P1.el5_8.4 | bind-libs-9.3.6-20.P1.el5_8.4.x86_64.rpm |
| RedHat | 5 | ppc64 | bind-devel | < 9.3.6-20.P1.el5_8.4 | bind-devel-9.3.6-20.P1.el5_8.4.ppc64.rpm |
| RedHat | 5 | x86_64 | bind-chroot | < 9.3.6-20.P1.el5_8.4 | bind-chroot-9.3.6-20.P1.el5_8.4.x86_64.rpm |
| RedHat | 5 | s390x | bind-libs | < 9.3.6-20.P1.el5_8.4 | bind-libs-9.3.6-20.P1.el5_8.4.s390x.rpm |
| RedHat | 5 | ppc | bind-debuginfo | < 9.3.6-20.P1.el5_8.4 | bind-debuginfo-9.3.6-20.P1.el5_8.4.ppc.rpm |
| RedHat | 5 | ia64 | bind-sdb | < 9.3.6-20.P1.el5_8.4 | bind-sdb-9.3.6-20.P1.el5_8.4.ia64.rpm |
| RedHat | 5 | i386 | bind-debuginfo | < 9.3.6-20.P1.el5_8.4 | bind-debuginfo-9.3.6-20.P1.el5_8.4.i386.rpm |
| RedHat | 5 | x86_64 | bind | < 9.3.6-20.P1.el5_8.4 | bind-9.3.6-20.P1.el5_8.4.x86_64.rpm |
| RedHat | 5 | s390 | bind-devel | < 9.3.6-20.P1.el5_8.4 | bind-devel-9.3.6-20.P1.el5_8.4.s390.rpm |
| RedHat | 5 | i386 | bind-devel | < 9.3.6-20.P1.el5_8.4 | bind-devel-9.3.6-20.P1.el5_8.4.i386.rpm |
Related
openvas
openvas
CentOS Update for bind97 CESA-2012:1266 centos5
2012-09-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1199-1)
2021-06-09 00:00:00
Debian Security Advisory DSA 2547-1 (bind9)
2012-09-15 00:00:00
nessus
nessus
Debian DSA-2547-1 : bind9 - improper assert
2012-09-13 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : bind9 vulnerability (USN-1566-1)
2012-09-14 00:00:00
Oracle Solaris Third-Party Patch Update : bind (cve_2012_4244_denial_of)
2015-01-19 00:00:00
centos
centos
bind, caching security update
2012-09-14 10:33:14
bind security update
2012-09-14 11:25:59
bind97 security update
2012-09-14 10:09:49
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.1-10.P3.fc18
2012-09-23 04:55:51
[SECURITY] Fedora 17 Update: bind-9.9.1-9.P3.fc17
2012-09-23 03:28:42
[SECURITY] Fedora 16 Update: bind-9.8.3-4.P3.fc16
2012-09-27 04:33:00
debian
debian
[SECURITY] [DSA 2547-1] bind9 security update
2012-09-12 20:07:48
redhat
redhat
(RHSA-2012:1266) Important: bind97 security update
2012-09-14 00:00:00
(RHSA-2012:1268) Important: bind security update
2012-09-14 00:00:00
(RHSA-2012:1365) Important: bind security update
2012-10-12 00:00:00
suse
suse
Security update for bind (critical)
2012-10-13 06:09:20
Security update for bind (critical)
2012-09-18 02:08:27
bind: fixed a remote denial of service attack (abort) (critical)
2012-09-17 19:08:37
ubuntu
ubuntu
Bind vulnerability
2012-09-13 00:00:00
cve
cve
CVE-2012-4244
2012-09-14 10:33:21
nvd
nvd
CVE-2012-4244
2012-09-14 10:33:21
veracode
veracode
Denial Of Service
2019-01-15 08:57:26
cvelist
cvelist
CVE-2012-4244
2012-09-14 00:00:00
debiancve
debiancve
CVE-2012-4244
2012-09-14 10:33:21
oraclelinux
oraclelinux
bind97 security update
2012-09-14 00:00:00
bind security and bug fix update
2012-09-14 00:00:00
bind security update
2012-09-14 00:00:00
amazon
amazon
Important: bind
2012-09-22 21:34:00
securityvulns
securityvulns
ISC bind DoS
2012-09-18 00:00:00
[USN-1566-1] Bind vulnerability
2012-09-18 00:00:00
prion
prion
Design/Logic Flaw
2012-09-14 10:33:00
ubuntucve
ubuntucve
CVE-2012-4244
2012-09-13 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-12:06.bind
2012-11-22 00:00:00
checkpoint_advisories
checkpoint_advisories
f5
f5
SOL14201 - BIND denial-of-service attack CVE-2012-5166/CVE-2012-4244
2013-02-11 00:00:00
K14201 : BIND denial-of-service attack CVE-2012-5166/CVE-2012-4244
2014-08-26 00:00:00
freebsd
freebsd
FreeBSD -- Multiple Denial of Service vulnerabilities with named(8)
2012-11-22 00:00:00
gentoo
gentoo
BIND: Multiple vulnerabilities
2012-09-24 00:00:00
threatpost
threatpost
Six Security Flaws Fixed in BIND 9.9.2
2012-12-05 16:15:32
vmware
vmware