SCIENTIFIC-LINUX-USERS Archives

July 2009

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Bind 9 DoS vulnerability
From:
Phil Perry <[log in to unmask]>
Reply To:
Phil Perry <[log in to unmask]>
Date:
Wed, 29 Jul 2009 12:26:05 +0100
Content-Type:
text/plain
Parts/Attachments:
text/plain (20 lines) 
Jan Kundrát wrote:
> Michael Mansour wrote:
>> Is this something real and to be concerned about?
> 
> Yes, it crashed our named instance running on a freshly updated SL5.2.
> For reference, exploit is available from the Debian bugtracker [1]. Note
> that the iptables snippet won't work on SL because it doesn't have the
> u32 iptables module.
> 
> Cheers,
> -jkt
> 
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=538975


For those interested, an upstream bug together with a patch is available 
here:

https://bugzilla.redhat.com/show_bug.cgi?id=514292

ATOM RSS1 RSS2