Slackware 14.2: 2016-204-01 Critical Threat: Bind Infinite Recursion
slackware
July 22, 2016
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue
Summary
Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.10.4_P2-i586-1_slack14.2.txz: Upgraded. Fixed a security issue: getrrsetbyname with a non absolute name could trigger an infinite recursion bug in lwresd and named with lwres configured if when combined with a search list entry the resulting name is too long. (CVE-2016-2775) [RT #42694] For more information, see: https://www.cve.org/CVERecord?id=CVE-2016-2775 (* Security fix *)
Where Find New Packages
Thanks to the friendly folks at the OSU Open Source Lab
(https://osuosl.org/) for donating FTP and rsync hosting
to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for
additional mirror sites near you.
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware 13.1:
Updated package for Slackware x86_64 13.1:
Updated package for Slackware 13.37:
Updated package for Slackware x86_64 13.37:
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:
MD5 Signatures
Slackware 13.0 package:
cfb2b607cd09d42e3647318d78fde310 bind-9.9.9_P2-i486-1_slack13.0.txz
Slackware x86_64 13.0 package:
93be76e6f30c427e3df716d1a5d1c75f bind-9.9.9_P2-x86_64-1_slack13.0.txz
Slackware 13.1 package:
db496174c2c387bca3bd4bf9c2193e8b bind-9.9.9_P2-i486-1_slack13.1.txz
Slackware x86_64 13.1 package:
66e7c65014b102e98735ef10ad752a51 bind-9.9.9_P2-x86_64-1_slack13.1.txz
Slackware 13.37 package:
80ee4d63e6de0a2cb5a4a6fe52fa5f9e bind-9.9.9_P2-i486-1_slack13.37.txz
Slackware x86_64 13.37 package:
62e43f6e05e63a6a39d7e02b52e35fdd bind-9.9.9_P2-x86_64-1_slack13.37.txz
Slackware 14.0 package:
08269a9cf82e706dc52c2ac02f6a07d5 bind-9.9.9_P2-i486-1_slack14.0.txz
Slackware x86_64 14.0 package:
ca8895c50273465f657a5c19afca1732 bind-9.9.9_P2-x86_64-1_slack14.0.txz
Slackware 14.1 package:
0386780ec9c21ebc8eb20051ab885d48 bind-9.9.9_P2-i486-1_slack14.1.txz
Slackware x86_64 14.1 package:
7e56afc3e4f9539dd583e1122bea02f3 bind-9.9.9_P2-x86_64-1_slack14.1.txz
Slackware 14.2 package:
809333b70180d137ea1a45d2aded503d bind-9.10.4_P2-i586-1_slack14.2.txz
Slackware x86_64 14.2 package:
569f79b79ce22ec86a8d09be661e4815 bind-9.10.4_P2-x86_64-1_slack14.2.txz
Slackware -current package:
05dd39f0119f85552d9b8a66cb13f976 n/bind-9.10.4_P2-i586-1.txz
Slackware x86_64 -current package:
9c5607e7aeba3d91f4cefb1b18bf4d9a n/bind-9.10.4_P2-x86_64-1.txz
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: Upgrade the package as root: # upgradepkg bind-9.10.4_P2-i586-1_slack14.2.txz Then, restart the name server: # /etc/rc.d/rc.bind restart
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!