Patch Available for DoS Vulnerability in BIND 9 Nameservers

Issues related to software problems.
Post Reply
rotorboy
Posts: 27
Joined: 2005/03/03 23:02:04

Patch Available for DoS Vulnerability in BIND 9 Nameservers

Post by rotorboy » 2013/07/30 16:36:13

Greetings.
I was reading this article:
http://threatpost.com/patch-available-for-dos-vulnerability-in-bind-nameservers/101523

I notice on CentOS 5.9 I have bind-9.3.6-20.P1.el5_8.6 rpm installed.

Does anyone know if the issue in this article applies to this version of bind?

Thanks!

tigalch
QA Team
Posts: 522
Joined: 2012/06/23 17:28:41
Location: Austria

Re: Patch Available for DoS Vulnerability in BIND 9 Nameservers

Post by tigalch » 2013/07/31 18:55:36

The issue you are refering to (CVE-2013-4854) is indeed fixed by a recent update from upstream (https://rhn.redhat.com/errata/RHSA-2013-1115.html). However as also mentioned [url=https://access.redhat.com/security/cve/CVE-2013-4854]here[/url], the version of bind shiped with C5 is not affected by this issue (only bind97 is, or better was).

User avatar
TrevorH
Forum Moderator
Posts: 28544
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Patch Available for DoS Vulnerability in BIND 9 Nameservers

Post by TrevorH » 2013/07/31 20:41:55

I've moved this thread to the CentOS 5 forums since that sounds like a better place for it...

rotorboy
Posts: 27
Joined: 2005/03/03 23:02:04

Re: Patch Available for DoS Vulnerability in BIND 9 Nameservers

Post by rotorboy » 2013/07/31 21:49:07

Sorry, I thought I had posted to the CentOS5 forum. Thanks for the replies!

Post Reply

Return to “CentOS 5 - Software Support”