Lucene search
RedHatRHSA-2013:0689HistoryMar 28, 2013 - 12:00 a.m.
(RHSA-2013:0689) Important: bind security and bug fix update
2013-03-2800:00:00
access.redhat.com
36
EPSS
0.943
Percentile
99.2%
The Berkeley Internet Name Domain (BIND) is an implementation of the
Domain Name System (DNS) protocols. BIND includes a DNS server (named); a
resolver library (routines for applications to use when interfacing with
DNS); and tools for verifying that the DNS server is operating correctly.
A denial of service flaw was found in the libdns library. A remote attacker
could use this flaw to send a specially-crafted DNS query to named that,
when processed, would cause named to use an excessive amount of memory, or
possibly crash. (CVE-2013-2266)
Note: This update disables the syntax checking of NAPTR (Naming Authority
Pointer) resource records.
This update also fixes the following bug:
- Previously, rebuilding the bind-dyndb-ldap source RPM failed with a
β/usr/include/dns/view.h:76:21: error: dns/rrl.h: No such file or
directoryβ error. (BZ#928439)
All bind users are advised to upgrade to these updated packages, which
contain patches to correct these issues. After installing the update, the
BIND daemon (named) will be restarted automatically.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | ppc | bind-libs | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-libs-9.8.2-0.17.rc1.el6_4.4.ppc.rpm |
| RedHat | 6 | ppc64 | bind-sdb | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-sdb-9.8.2-0.17.rc1.el6_4.4.ppc64.rpm |
| RedHat | 6 | s390x | bind-sdb | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-sdb-9.8.2-0.17.rc1.el6_4.4.s390x.rpm |
| RedHat | 6 | s390x | bind-debuginfo | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-debuginfo-9.8.2-0.17.rc1.el6_4.4.s390x.rpm |
| RedHat | 6 | x86_64 | bind-debuginfo | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-debuginfo-9.8.2-0.17.rc1.el6_4.4.x86_64.rpm |
| RedHat | 6 | i686 | bind-sdb | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-sdb-9.8.2-0.17.rc1.el6_4.4.i686.rpm |
| RedHat | 6 | x86_64 | bind-sdb | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-sdb-9.8.2-0.17.rc1.el6_4.4.x86_64.rpm |
| RedHat | 6 | i686 | bind-chroot | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-chroot-9.8.2-0.17.rc1.el6_4.4.i686.rpm |
| RedHat | 6 | s390x | bind | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-9.8.2-0.17.rc1.el6_4.4.s390x.rpm |
| RedHat | 6 | src | bind | <Β 9.8.2-0.17.rc1.el6_4.4 | bind-9.8.2-0.17.rc1.el6_4.4.src.rpm |
Related
nessus
nessus
Debian DSA-2656-1 : bind9 - denial of service
2013-04-01 00:00:00
openSUSE Security Update : dhcp (openSUSE-SU-2013:0620-1)
2014-06-13 00:00:00
openvas
openvas
Fedora Update for bind FEDORA-2013-4525
2013-04-08 00:00:00
RedHat Update for bind97 RHSA-2013:0690-01
2013-04-02 00:00:00
Fedora Update for bind FEDORA-2013-4525
2013-04-08 00:00:00
oraclelinux
oraclelinux
bind97 security update
2013-03-28 00:00:00
bind security and bug fix update
2013-03-28 00:00:00
bind97 security and bug fix update
2014-09-17 00:00:00
nvd
nvd
CVE-2013-2266
2013-03-28 16:55:01
CVE-2013-2494
2013-03-28 16:55:01
cvelist
cvelist
CVE-2013-2266
2013-03-28 16:00:00
CVE-2013-2494
2022-10-03 16:14:59
freebsd
freebsd
dns/bind9* -- Malicious Regex Can Cause Memory Exhaustion
2013-03-11 00:00:00
FreeBSD -- BIND remote denial of service
2013-04-02 00:00:00
amazon
amazon
Important: bind
2013-04-04 11:09:00
prion
prion
Code injection
2013-03-28 16:55:00
Design/Logic Flaw
2013-03-28 16:55:00
fedora
fedora
[SECURITY] Fedora 18 Update: bind-9.9.2-10.P2.fc18
2013-04-05 23:08:28
[SECURITY] Fedora 17 Update: bind-9.9.2-7.P2.fc17
2013-04-07 00:25:01
[SECURITY] Fedora 18 Update: bind-9.9.3-4.P2.fc18
2013-08-04 00:13:45
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:51:10
redhat
redhat
(RHSA-2013:0690) Important: bind97 security update
2013-03-28 00:00:00
(RHSA-2013:0746) Important: rhev-hypervisor6 security and bug fix update
2013-04-23 00:00:00
securityvulns
securityvulns
bind / dhcp DoS
2013-04-01 00:00:00
[USN-1783-1] Bind vulnerability
2013-04-01 00:00:00
[slackware-security] dhcp (SSA:2013-086-02)
2013-04-01 00:00:00
ubuntucve
ubuntucve
CVE-2013-2266
2013-03-26 00:00:00
CVE-2013-2494
2013-03-28 00:00:00
ubuntu
ubuntu
Bind vulnerability
2013-03-29 00:00:00
debiancve
debiancve
CVE-2013-2266
2013-03-28 16:55:01
CVE-2013-2494
2022-10-03 16:14:59
seebug
seebug
ISC BIND 9 'libdns' θΏη¨ζη»ζε‘ζΌζ΄(CVE-2013-2266)
2013-03-29 00:00:00
f5
f5
SOL14386 - BIND vulnerability CVE-2013-2266
2013-05-01 00:00:00
K14386 : BIND vulnerability CVE-2013-2266
2014-08-26 00:00:00
checkpoint_advisories
checkpoint_advisories
ISC BIND Regular Expression Handling Denial of Service (CVE-2013-2266)
2013-06-30 00:00:00
debian
debian
[SECURITY] [DSA 2656-1] bind9 security update
2013-03-30 15:42:49
centos
centos
bind security update
2013-03-29 00:19:00
bind97 security update
2013-03-28 23:25:41
cve
cve
CVE-2013-2266
2013-03-28 16:55:01
CVE-2013-2494
2022-10-03 16:14:59
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:04.bind
2013-04-02 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1822
2021-07-02 16:37:55
gentoo
gentoo
BIND: Denial of service
2014-01-29 00:00:00