Important: bind (SL5, SL6)

By Scientific Linux Team on July 11, 2011

Synopsis: Important: bind security update
Issue Date: 2011-07-07
CVE Numbers: CVE-2011-2464

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.

A flaw was discovered in the way BIND handled certain DNS requests. A
remote attacker could use this flaw to send a specially-crafted DNS request
packet to BIND, causing it to exit unexpectedly due to a failed assertion.
(CVE-2011-2464)

Users of bind97 on Red Hat Enterprise Linux 5, and bind on Red Hat
Enterprise Linux 6, are advised to upgrade to these updated packages, which
resolve this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.

SL5
x86_64
bind97-9.7.0-6.P2.el5_6.3.x86_64.rpm
bind97-chroot-9.7.0-6.P2.el5_6.3.x86_64.rpm
bind97-devel-9.7.0-6.P2.el5_6.3.i386.rpm
bind97-devel-9.7.0-6.P2.el5_6.3.x86_64.rpm
bind97-libs-9.7.0-6.P2.el5_6.3.i386.rpm
bind97-libs-9.7.0-6.P2.el5_6.3.x86_64.rpm
bind97-utils-9.7.0-6.P2.el5_6.3.x86_64.rpm
i386
bind97-9.7.0-6.P2.el5_6.3.i386.rpm
bind97-chroot-9.7.0-6.P2.el5_6.3.i386.rpm
bind97-devel-9.7.0-6.P2.el5_6.3.i386.rpm
bind97-libs-9.7.0-6.P2.el5_6.3.i386.rpm
bind97-utils-9.7.0-6.P2.el5_6.3.i386.rpm
SL6
x86_64
bind-9.7.3-2.el6_1.P3.2.x86_64.rpm
bind-chroot-9.7.3-2.el6_1.P3.2.x86_64.rpm
bind-devel-9.7.3-2.el6_1.P3.2.i686.rpm
bind-devel-9.7.3-2.el6_1.P3.2.x86_64.rpm
bind-libs-9.7.3-2.el6_1.P3.2.i686.rpm
bind-libs-9.7.3-2.el6_1.P3.2.x86_64.rpm
bind-sdb-9.7.3-2.el6_1.P3.2.x86_64.rpm
bind-utils-9.7.3-2.el6_1.P3.2.x86_64.rpm
i386
bind-9.7.3-2.el6_1.P3.2.i686.rpm
bind-chroot-9.7.3-2.el6_1.P3.2.i686.rpm
bind-devel-9.7.3-2.el6_1.P3.2.i686.rpm
bind-libs-9.7.3-2.el6_1.P3.2.i686.rpm
bind-sdb-9.7.3-2.el6_1.P3.2.i686.rpm
bind-utils-9.7.3-2.el6_1.P3.2.i686.rpm

– Scientific Linux Development Team