Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Fedora 10: 2009-0451 Critical Update For BIND DNS Server Issues

fedora
Calendar Grey January 14, 2009
Dist Fedora Esm H88
The latest update for bind on Fedora 10 addresses several issues, such as legacy configuration problems and a major security vulnerability patch.
Update to 9.5.1-P1 maintenance release which fixes CVE-2009-0025

Summary

BIND (Berkeley Internet Name Domain) is an implementation of the DNS

(Domain Name System) protocols. BIND includes a DNS server (named),

which resolves host names to IP addresses; a resolver library

(routines for applications to use when interfacing with DNS); and

tools for verifying that the DNS server is operating properly.

Update to 9.5.1-P1 maintenance release which fixes CVE-2009-0025. This update

also address following issues: - sample config file was outdated - specifying

a fixed query source was broken

* Thu Jan 8 2009 Adam Tkac 32:9.5.1-1.P1

- 9.5.1-P1 release (CVE-2009-0025)

- patches merged

- bind-95-sdlz-include.patch

- bind-96-rh475120.patch

* Tue Dec 9 2008 Adam Tkac 32:9.5.1-0.9.3.b3

- allow to reuse address for non-random query-source ports (#475120)

* Tue Dec 2 2008 Adam Tkac 32:9.5.1-0.9.2.b3

- fixed rare use-after-free problem in host utility (#452060)

* Mon Dec 1 2008 Adam Tkac 32:9.5.1-0.9.1.b3

- improved sample config file (#473586)

* Tue Nov 11 2008 Adam Tkac 32:9.5.1-0.9.b3

- 9.5.1b3 release

- don't mount /proc in chroot, it is no longer needed

* Mon Nov 3 2008 Adam Tkac 32:9.5.1-0.8.4.b2

- dig/host: use only IPv4 addresses when -4 option is specified (#469440)

* Thu Oct 30 2008 Adam Tkac 32:9.5.1-0.8.2.b2

- removed unneeded bind-9.4.1-ldap-api.patch

* Thu Oct 30 2008 Adam Tkac 32:9.5.1-0.8.1.b2

- ship dns/{s,}dlz.h and isc/radix.h in bind-devel

[ 1 ] Bug #478984 - CVE-2009-0025 bind: DSA_do_verify() returns check issue

https://bugzilla.redhat.com/show_bug.cgi?id=478984

su -c 'yum update bind' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Topics%20covered

Topics Covered

security advisory critical Fedora bind DNS threat fix

Change Log

References

Update Instructions

Severity
critical
Lowest
Low
Medium
High
Critical

Product: Fedora 10
Version: 9.5.1
Release: 1.P1.fc10
URL: Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server

Topics%20covered

Topics Covered

security advisory critical Fedora bind DNS threat fix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here