Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Gentoo GLSA-201006-11 Normal: BIND Cache Poisoning Threats

gentoo
Calendar Grey June 2, 2010
Dist Gentoo Esm H88
Recent findings of critical cache manipulation flaws in BIND necessitate immediate patching to avert potential attack vectors.
Several cache poisoning vulnerabilities have been found in BIND.

Summary

Multiple cache poisoning vulnerabilities were discovered in BIND. For further information please consult the CVE entries and the ISC Security Bulletin referenced below. Note: CVE-2010-0290 and CVE-2010-0382 exist because of an incomplete fix and a regression for CVE-2009-4022.

Topics%20covered

Topics Covered

security advisory gentoo exploit bind cache poisoning dns normal

Resolution

All BIND users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-dns/bind-9.4.3_p5"

References

[ 1 ] ISC Advisory [ 2 ] CVE-2009-4022 https://www.cve.org/CVERecord?id=CVE-2009-4022 [ 3 ] CVE-2010-0097 https://www.cve.org/CVERecord?id=CVE-2010-0097 [ 4 ] CVE-2010-0290 https://www.cve.org/CVERecord?id=CVE-2010-0290 [ 5 ] CVE-2010-0382 https://www.cve.org/CVERecord?id=CVE-2010-0382

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201006-11
style>.gentoo_availability{display:block;}

Concerns

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

Severity: Normal
Title: BIND: Multiple vulnerabilities
Date: June 01, 2010
Bugs: #301548, #308035
ID: 201006-11

Topics%20covered

Topics Covered

security advisory gentoo exploit bind cache poisoning dns normal

Synopsis

Several cache poisoning vulnerabilities have been found in BIND.

Background

ISC BIND is the Internet Systems Consortium implementation of the Domain Name System (DNS) protocol.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-dns/bind < 9.4.3_p5 >= 9.4.3_p5

Impact

===== An attacker could exploit this weakness to poison the cache of a recursive resolver and thus spoof DNS traffic, which could e.g. lead to the redirection of web or mail traffic to malicious sites.

Workaround

There is no known workaround at this time.

Related News

Your message here