Synopsis: Important: bind security update
Advisory ID: SLSA-2017:0062-1
Issue Date: 2017-01-16
CVE Numbers: CVE-2016-9147
CVE-2016-9131
CVE-2016-9444
--
Security Fix(es):
* A denial of service flaw was found in the way BIND processed a response
to an ANY query. A remote attacker could use this flaw to make named exit
unexpectedly with an assertion failure via a specially crafted DNS
response. (CVE-2016-9131)
* A denial of service flaw was found in the way BIND handled a query
response containing inconsistent DNSSEC information. A remote attacker
could use this flaw to make named exit unexpectedly with an assertion
failure via a specially crafted DNS response. (CVE-2016-9147)
* A denial of service flaw was found in the way BIND handled an unusually-
formed DS record response. A remote attacker could use this flaw to make
named exit unexpectedly with an assertion failure via a specially crafted
DNS response. (CVE-2016-9444)
--
SL7
x86_64
bind-debuginfo-9.9.4-38.el7_3.1.i686.rpm
bind-debuginfo-9.9.4-38.el7_3.1.x86_64.rpm
bind-libs-9.9.4-38.el7_3.1.i686.rpm
bind-libs-9.9.4-38.el7_3.1.x86_64.rpm
bind-libs-lite-9.9.4-38.el7_3.1.i686.rpm
bind-libs-lite-9.9.4-38.el7_3.1.x86_64.rpm
bind-utils-9.9.4-38.el7_3.1.x86_64.rpm
bind-9.9.4-38.el7_3.1.x86_64.rpm
bind-chroot-9.9.4-38.el7_3.1.x86_64.rpm
bind-devel-9.9.4-38.el7_3.1.i686.rpm
bind-devel-9.9.4-38.el7_3.1.x86_64.rpm
bind-lite-devel-9.9.4-38.el7_3.1.i686.rpm
bind-lite-devel-9.9.4-38.el7_3.1.x86_64.rpm
bind-pkcs11-9.9.4-38.el7_3.1.x86_64.rpm
bind-pkcs11-devel-9.9.4-38.el7_3.1.i686.rpm
bind-pkcs11-devel-9.9.4-38.el7_3.1.x86_64.rpm
bind-pkcs11-libs-9.9.4-38.el7_3.1.i686.rpm
bind-pkcs11-libs-9.9.4-38.el7_3.1.x86_64.rpm
bind-pkcs11-utils-9.9.4-38.el7_3.1.x86_64.rpm
bind-sdb-9.9.4-38.el7_3.1.x86_64.rpm
bind-sdb-chroot-9.9.4-38.el7_3.1.x86_64.rpm
noarch
bind-license-9.9.4-38.el7_3.1.noarch.rpm
- Scientific Linux Development Team