Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 522
Alerts This Week
Warning Icon 1 522

Debian 8: DSA-3449-1 Critical: bind9 Denial-of-Service Vulnerability

debian
Calendar Grey January 19, 2016
Scroller Debian
Crucial patch for bind9 on Debian mitigates potential denial of service vulnerabilities, strengthening overall security resilience.
It was discovered that specific APL RR data could trigger an INSIST failure in apl_42.c and cause the BIND DNS server to exit, leading to a denial-of-service

Summary

For the oldstable distribution (wheezy), this problem has been fixed
in version 1:9.8.4.dfsg.P1-6+nmu2+deb7u9.

For the stable distribution (jessie), this problem has been fixed in
version 1:9.9.5.dfsg-9+deb8u5.

We recommend that you upgrade your bind9 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: bind9
CVE ID: CVE-2015-8704

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.