Alerts This Week
Warning Icon 1 541
Alerts This Week
Warning Icon 1 541

Slackware 14.2: SSA:2017-165-02 Vital: Postfix Denial Of Service

slackware
Calendar Grey June 15, 2017
Dist Slackware Esm H88
Latest updates for bind packages address significant denial of service vulnerabilities found in multiple Slackware distributions.
New bind packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bind-9.10.5_P1-i586-1_slack14.2.txz: Upgraded. Fixed denial of service security issue: Some RPZ configurations could go into an infinite query loop when encountering responses with TTL=0. For more information, see: https://www.cve.org/CVERecord?id=CVE-2017-3140 (* Security fix *)

Topics%20covered

Topics Covered

security advisory denial of service critical issue software update bind security fix Slackware

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware 13.1:
Updated package for Slackware x86_64 13.1:
Updated package for Slackware 13.37:
Updated package for Slackware x86_64 13.37:
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 13.0 package: 350a8f9a83ec760b707d584ee7c6c7a4 bind-9.9.10_P1-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: e5c5a8620b15f9280fefb412d5541a29 bind-9.9.10_P1-x86_64-1_slack13.0.txz
Slackware 13.1 package: 4b16cd94499a1c6b85d829f1931d8ce5 bind-9.9.10_P1-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: 22cce457a8b6dfab2553eec43b6bf432 bind-9.9.10_P1-x86_64-1_slack13.1.txz
Slackware 13.37 package: aaac0f079ec13c7239aaa49f831cfdda bind-9.9.10_P1-i486-1_slack13.37.txz
Slackware x86_64 13.37 package: 5f3485ae7612281a17b3738623227022 bind-9.9.10_P1-x86_64-1_slack13.37.txz
Slackware 14.0 package: bb879a812f02036c663d75dce8ed6a1c bind-9.9.10_P1-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: 43911fc0b9183e1e2e2ea52627a0ed02 bind-9.9.10_P1-x86_64-1_slack14.0.txz
Slackware 14.1 package: bffa59e2097ce33403aea5d6f3a1e6a9 bind-9.9.10_P1-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: d98f6ee60ba980710e5eb2715c7c9681 bind-9.9.10_P1-x86_64-1_slack14.1.txz
Slackware 14.2 package: 21e7c35864aaaab9052886b93b872d2a bind-9.10.5_P1-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: a2e9291ed112740f8d20d34e0c0f263d bind-9.10.5_P1-x86_64-1_slack14.2.txz
Slackware -current package: 6ea265f2cd6e9bfc8181c1d42dfc4b0e n/bind-9.11.1_P1-i586-1.txz
Slackware x86_64 -current package: c3da50158452f03b34bad0bd236272c0 n/bind-9.11.1_P1-x86_64-1.txz

Severity
important
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory denial of service critical issue software update bind security fix Slackware

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg bind-9.10.5_P1-i586-1_slack14.2.txz Then, restart the name server: # /etc/rc.d/rc.bind restart

Related News

Your message here