Scientific Linux: SLSA-2016:0459-1 Important: BIND Denial Of Service Flaws

Date: Wed, 16 Mar 2016 19:11:25 -0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Important: bind on SL5.x, SL6.x, SL7.x i386/x86_64
MIME-Version: 1.0
Message-ID: <20160316191125.551.24149@slpackages.fnal.gov>

Synopsis: Important: bind security update
Advisory ID: SLSA-2016:0459-1
Issue Date: 2016-03-16
CVE Numbers: CVE-2016-1285
 CVE-2016-1286
--

A denial of service flaw was found in the way BIND parsed signature
records for DNAME records. By sending a specially crafted query, a remote
attacker could use this flaw to cause named to crash. (CVE-2016-1286)

A denial of service flaw was found in the way BIND processed certain
control channel input. A remote attacker able to send a malformed packet
to the control channel could use this flaw to cause named to crash.
(CVE-2016-1285)

After installing the update, the BIND daemon (named) will be restarted
automatically.
--

SL5
 x86_64
 bind-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-debuginfo-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-debuginfo-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-libs-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-libs-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-sdb-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-utils-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-chroot-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-devel-9.3.6-25.P1.el5_11.8.x86_64.rpm
 bind-libbind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-libbind-devel-9.3.6-25.P1.el5_11.8.x86_64.rpm
 caching-nameserver-9.3.6-25.P1.el5_11.8.x86_64.rpm
 i386
 bind-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-debuginfo-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-libs-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-sdb-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-utils-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-chroot-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
 bind-libbind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
 caching-nameserver-9.3.6-25.P1.el5_11.8.i386.rpm
SL6
 x86_64
 bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 bind-libs-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-libs-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 bind-utils-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 bind-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 bind-chroot-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 bind-devel-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-devel-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 bind-sdb-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
 i386
 bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-libs-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-utils-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-chroot-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-devel-9.8.2-0.37.rc1.el6_7.7.i686.rpm
 bind-sdb-9.8.2-0.37.rc1.el6_7.7.i686.rpm
SL7
 x86_64
 bind-debuginfo-9.9.4-29.el7_2.3.i686.rpm
 bind-debuginfo-9.9.4-29.el7_2.3.x86_64.rpm
 bind-libs-9.9.4-29.el7_2.3.i686.rpm
 bind-libs-9.9.4-29.el7_2.3.x86_64.rpm
 bind-libs-lite-9.9.4-29.el7_2.3.i686.rpm
 bind-libs-lite-9.9.4-29.el7_2.3.x86_64.rpm
 bind-utils-9.9.4-29.el7_2.3.x86_64.rpm
 bind-9.9.4-29.el7_2.3.x86_64.rpm
 bind-chroot-9.9.4-29.el7_2.3.x86_64.rpm
 bind-devel-9.9.4-29.el7_2.3.i686.rpm
 bind-devel-9.9.4-29.el7_2.3.x86_64.rpm
 bind-lite-devel-9.9.4-29.el7_2.3.i686.rpm
 bind-lite-devel-9.9.4-29.el7_2.3.x86_64.rpm
 bind-pkcs11-9.9.4-29.el7_2.3.x86_64.rpm
 bind-pkcs11-devel-9.9.4-29.el7_2.3.i686.rpm
 bind-pkcs11-devel-9.9.4-29.el7_2.3.x86_64.rpm
 bind-pkcs11-libs-9.9.4-29.el7_2.3.i686.rpm
 bind-pkcs11-libs-9.9.4-29.el7_2.3.x86_64.rpm
 bind-pkcs11-utils-9.9.4-29.el7_2.3.x86_64.rpm
 bind-sdb-9.9.4-29.el7_2.3.x86_64.rpm
 bind-sdb-chroot-9.9.4-29.el7_2.3.x86_64.rpm
 noarch
 bind-license-9.9.4-29.el7_2.3.noarch.rpm

- Scientific Linux Development Team