Synopsis: Important: bind security update
Advisory ID: SLSA-2015:1706-1
Issue Date: 2015-09-03
CVE Numbers: CVE-2015-5722
—
A denial of service flaw was found in the way BIND parsed certain
malformed DNSSEC keys. A remote attacker could use this flaw to send a
specially crafted DNS query (for example, a query requiring a response
from a zone containing a deliberately malformed key) that would cause
named functioning as a validating resolver to crash. (CVE-2015-5722)
After installing the update, the BIND daemon (named) will be restarted
automatically.
—
SL5
x86_64
bind-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-debuginfo-9.3.6-25.P1.el5_11.4.i386.rpm
bind-debuginfo-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-libs-9.3.6-25.P1.el5_11.4.i386.rpm
bind-libs-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-sdb-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-utils-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-chroot-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-devel-9.3.6-25.P1.el5_11.4.i386.rpm
bind-devel-9.3.6-25.P1.el5_11.4.x86_64.rpm
bind-libbind-devel-9.3.6-25.P1.el5_11.4.i386.rpm
bind-libbind-devel-9.3.6-25.P1.el5_11.4.x86_64.rpm
caching-nameserver-9.3.6-25.P1.el5_11.4.x86_64.rpm
i386
bind-9.3.6-25.P1.el5_11.4.i386.rpm
bind-debuginfo-9.3.6-25.P1.el5_11.4.i386.rpm
bind-libs-9.3.6-25.P1.el5_11.4.i386.rpm
bind-sdb-9.3.6-25.P1.el5_11.4.i386.rpm
bind-utils-9.3.6-25.P1.el5_11.4.i386.rpm
bind-chroot-9.3.6-25.P1.el5_11.4.i386.rpm
bind-devel-9.3.6-25.P1.el5_11.4.i386.rpm
bind-libbind-devel-9.3.6-25.P1.el5_11.4.i386.rpm
caching-nameserver-9.3.6-25.P1.el5_11.4.i386.rpm
– Scientific Linux Development Team
