Synopsis: Important: bind security update Advisory ID: SLSA-2017:0062-1 Issue Date: 2017-01-16 CVE Numbers: CVE-2016-9147 CVE-2016-9131 CVE-2016-9444 -- Security Fix(es): * A denial of service flaw was found in the way BIND processed a response to an ANY query. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response. (CVE-2016-9131) * A denial of service flaw was found in the way BIND handled a query response containing inconsistent DNSSEC information. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response. (CVE-2016-9147) * A denial of service flaw was found in the way BIND handled an unusually- formed DS record response. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response. (CVE-2016-9444) -- SL7 x86_64 bind-debuginfo-9.9.4-38.el7_3.1.i686.rpm bind-debuginfo-9.9.4-38.el7_3.1.x86_64.rpm bind-libs-9.9.4-38.el7_3.1.i686.rpm bind-libs-9.9.4-38.el7_3.1.x86_64.rpm bind-libs-lite-9.9.4-38.el7_3.1.i686.rpm bind-libs-lite-9.9.4-38.el7_3.1.x86_64.rpm bind-utils-9.9.4-38.el7_3.1.x86_64.rpm bind-9.9.4-38.el7_3.1.x86_64.rpm bind-chroot-9.9.4-38.el7_3.1.x86_64.rpm bind-devel-9.9.4-38.el7_3.1.i686.rpm bind-devel-9.9.4-38.el7_3.1.x86_64.rpm bind-lite-devel-9.9.4-38.el7_3.1.i686.rpm bind-lite-devel-9.9.4-38.el7_3.1.x86_64.rpm bind-pkcs11-9.9.4-38.el7_3.1.x86_64.rpm bind-pkcs11-devel-9.9.4-38.el7_3.1.i686.rpm bind-pkcs11-devel-9.9.4-38.el7_3.1.x86_64.rpm bind-pkcs11-libs-9.9.4-38.el7_3.1.i686.rpm bind-pkcs11-libs-9.9.4-38.el7_3.1.x86_64.rpm bind-pkcs11-utils-9.9.4-38.el7_3.1.x86_64.rpm bind-sdb-9.9.4-38.el7_3.1.x86_64.rpm bind-sdb-chroot-9.9.4-38.el7_3.1.x86_64.rpm noarch bind-license-9.9.4-38.el7_3.1.noarch.rpm - Scientific Linux Development Team