The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.
A denial of service flaw was found in the way BIND followed DNS
delegations. A remote attacker could use a specially crafted zone
containing a large number of referrals which, when looked up and processed,
would cause named to use excessive amounts of memory or crash.
(CVE-2014-8500)
All bind97 users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
update, the BIND daemon (named) will be restarted automatically.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | s390 | bind97-libs | < 9.7.0-21.P2.el5_11.1 | bind97-libs-9.7.0-21.P2.el5_11.1.s390.rpm |
RedHat | 5 | i386 | bind97 | < 9.7.0-21.P2.el5_11.1 | bind97-9.7.0-21.P2.el5_11.1.i386.rpm |
RedHat | 5 | s390x | bind97-debuginfo | < 9.7.0-21.P2.el5_11.1 | bind97-debuginfo-9.7.0-21.P2.el5_11.1.s390x.rpm |
RedHat | 5 | ppc64 | bind97-libs | < 9.7.0-21.P2.el5_11.1 | bind97-libs-9.7.0-21.P2.el5_11.1.ppc64.rpm |
RedHat | 5 | i386 | bind97-chroot | < 9.7.0-21.P2.el5_11.1 | bind97-chroot-9.7.0-21.P2.el5_11.1.i386.rpm |
RedHat | 5 | src | bind97 | < 9.7.0-21.P2.el5_11.1 | bind97-9.7.0-21.P2.el5_11.1.src.rpm |
RedHat | 5 | i386 | bind97-devel | < 9.7.0-21.P2.el5_11.1 | bind97-devel-9.7.0-21.P2.el5_11.1.i386.rpm |
RedHat | 5 | ppc | bind97-debuginfo | < 9.7.0-21.P2.el5_11.1 | bind97-debuginfo-9.7.0-21.P2.el5_11.1.ppc.rpm |
RedHat | 5 | s390 | bind97-devel | < 9.7.0-21.P2.el5_11.1 | bind97-devel-9.7.0-21.P2.el5_11.1.s390.rpm |
RedHat | 5 | ppc | bind97 | < 9.7.0-21.P2.el5_11.1 | bind97-9.7.0-21.P2.el5_11.1.ppc.rpm |