[SECURITY] Fedora 12 Update: bind-9.6.1-13.P2.fc12
updates at fedoraproject.org
updates at fedoraproject.org
Fri Nov 27 21:43:51 UTC 2009
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-12233
2009-11-27 21:02:31
--------------------------------------------------------------------------------
Name : bind
Product : Fedora 12
Version : 9.6.1
Release : 13.P2.fc12
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.
--------------------------------------------------------------------------------
Update Information:
Update to 9.6.1-P2 release which contains following fix: * Additional section
of response could be cached without successful DNSSEC validation even if DNSSEC
validation is enabled
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 25 2009 Adam Tkac <atkac redhat com> 32:9.6.1-13.P2
- update to 9.6.1-P2 (CVE-2009-4022)
* Thu Oct 8 2009 Adam Tkac <atkac redhat com> 32:9.6.1-12.P1
- don't package named-bootconf utility, it is very outdated and unneeded
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #538744 - CVE-2009-4022 bind: cache poisoning using not validated DNSSEC responses
https://bugzilla.redhat.com/show_bug.cgi?id=538744
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the Fedora-package-announce
mailing list