Login

Noch kein Login?
Daten vergessen?

 
Newsletter
Werbung
Sicherheit: Denial of Service in BIND
Aktuelle Meldungen Distributionen
Name: Denial of Service in BIND
ID: USN-1070-1
Distribution: Ubuntu
Plattformen: Ubuntu 10.10
Datum: Mi, 23. Februar 2011, 20:09
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0414

Originalnachricht

 

--===============6508097318499674952==
Content-Type: multipart/signed; micalg="pgp-sha512";
 protocol="application/pgp-signature"; boundary="=-dr6FzAXqq6vBJcWPrXMY"


--=-dr6FzAXqq6vBJcWPrXMY
Content-Type: text/plain; charset="UTF-8
Content-Transfer-Encoding: quoted-printable

===========================================================
Ubuntu Security Notice USN-1070-1         February 23, 2011
bind9 vulnerability
CVE-2011-0414
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 10.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 10.10:
  libdns66                        1:9.7.1.dfsg.P2-2ubuntu0.2

In general, a standard system update will make all the necessary changes.

Details follow:

It was discovered that Bind incorrectly handled IXFR transfers and dynamic
updates while under heavy load when used as an authoritative server. A
remote attacker could use this flaw to cause Bind to stop responding,
resulting in a denial of service.


Updated packages for Ubuntu 10.10:

  Source archives:

    bind9_9.7.1.dfsg.P2-2ubuntu0.2.debian.tar.gz
      Size/MD5:   633590 e359965f4d7402e02408085af4a4cd32
    bind9_9.7.1.dfsg.P2-2ubuntu0.2.dsc
      Size/MD5:     2292 423f576862de791b97edf37e95750309
    bind9_9.7.1.dfsg.P2.orig.tar.gz
      Size/MD5:  6104039 a09aab2a215166e37b741d78d776dfbc

  Architecture independent packages:

    bind9-doc_9.7.1.dfsg.P2-2ubuntu0.2_all.deb
      Size/MD5:   330324 8286b192fe1a5df9988c972c93ceb026
    host_9.7.1.dfsg.P2-2ubuntu0.2_all.deb
      Size/MD5:    17476 1792e7eaad32245086d117c710439e44

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):

    bind9-host_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:    69730 1c8a0a8b98b217eb83310d1821b1cc1c
    bind9_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:   349738 9037f4a622bb56df6a32d6fadce4a73e
    bind9utils_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:   120940 ef17428138445b9369d12d2fef74eba7
    dnsutils_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:   161304 f7840374de1936fdca7056c0d20449b1
    libbind-dev_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:  1493092 5eab9a20c300e9e6ac98ab1a99de51f9
    libbind9-60_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:    37084 e0017c6639f8909bfe7e9b77c5c050d7
    libdns66_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:   696296 ea1473ba2cad636caaed3a3b65360469
    libisc60_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:   169634 4a98361ade04085c3de155b52ac8481d
    libisccc60_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:    31444 12c3dcc49f830df8c120f2b6ae61f827
    libisccfg60_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:    54622 49e4a44091a9e4358f8e6d6e8a3ab8cc
    liblwres60_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:    50068 0ec154c84f2ac697534443cae6525865
    lwresd_9.7.1.dfsg.P2-2ubuntu0.2_amd64.deb
      Size/MD5:   234890 45bbf3f44f097404731d6ae9f391dc30

  i386 architecture (x86 compatible Intel/AMD):

    bind9-host_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:    66282 7729872a7cc4d6a447dc13b7f6563609
    bind9_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:   321106 56d1249fd1957643a45ceba86f40d8e4
    bind9utils_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:   111704 31cce7e333e0a7872b4d5d12d69bcf72
    dnsutils_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:   150772 09938abe28594324b475749255eb4ea8
    libbind-dev_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:  1417262 dbf1cd20c2b4b10208d7eb9c751c1f1e
    libbind9-60_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:    37320 7b2e67dcec38c8af0d57a114562b7144
    libdns66_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:   654184 0729856ebed628cfbe7cc5d338552bba
    libisc60_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:   156582 416eb9b5ff48fef5968fa57a3199b1d9
    libisccc60_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:    30010 0369a637c6d0833e7381293562604ebc
    libisccfg60_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:    47884 ef689385fe66b2dd42ba99c46a97ef4b
    liblwres60_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:    48616 07c5e3eaac12cbb8ac5b9852bd9aed89
    lwresd_9.7.1.dfsg.P2-2ubuntu0.2_i386.deb
      Size/MD5:   221284 e939144f47f77187f8ca4c8d07c2645a

  armel architecture (ARM Architecture):

    bind9-host_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:    68518 ecebf012ada2d2fe81bb5cc85ef7dd9a
    bind9_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:   331622 db7d728046eb5666093da95229181bbb
    bind9utils_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:   112430 bee409ecb3342aeb1f9e9fa832b4307b
    dnsutils_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:   157122 5b3ea1bf0358331c1232cd4bfc63e525
    libbind-dev_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:  1446262 e81d0993683a3cbbb5deadc319415468
    libbind9-60_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:    37296 05bce3c11513ae48dac282384b9f8ef2
    libdns66_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:   667836 3136961b68f1c87a7f9f80ed1df01277
    libisc60_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:   166214 db836c2ca7d367cbe50f19fa8ebd554d
    libisccc60_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:    29762 706b2de47ae03e24643b596b11acf8af
    libisccfg60_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:    47376 35e241d08173d2ddab95f1d04517decd
    liblwres60_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:    47504 9359b97549f8d2c7885a558305bda868
    lwresd_9.7.1.dfsg.P2-2ubuntu0.2_armel.deb
      Size/MD5:   232044 e953069ab11afd15feb7d3be4421ed71

  powerpc architecture (Apple Macintosh G3/G4/G5):

    bind9-host_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:    69828 6c9489b7b01d677de81a85202e0c084f
    bind9_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:   338524 20afddc2becaea17f22a5fa977b9c9db
    bind9utils_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:   119356 15966a3e0edce568f4a49e0829c7a977
    dnsutils_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:   160668 2cf63beb51141cddf08574d85571e8ff
    libbind-dev_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:  1390074 a71ce7daf9e242ae41ef23c5d76f444e
    libbind9-60_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:    37682 6c9e9817472f1e47a42dbadeb4e388a9
    libdns66_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:   672274 e1eed6b4d5f47ae35fdcafa58eec355e
    libisc60_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:   162448 daac152164e2b926eb153823cef58755
    libisccc60_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:    30732 ca150687d970df031330738aeb2e1670
    libisccfg60_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:    50676 a464f3130db836ec63d59b615a2b42ca
    liblwres60_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:    48938 d4bb6e119091033ed7a9b5d5d410fc42
    lwresd_9.7.1.dfsg.P2-2ubuntu0.2_powerpc.deb
      Size/MD5:   235280 d00611031e6cf113fa104721b828c8f4




--Ýr6FzAXqq6vBJcWPrXMY
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=w0vF
-----END PGP SIGNATURE-----

--=-dr6FzAXqq6vBJcWPrXMY--



--===============6508097318499674952==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============6508097318499674952==--
Pro-Linux
Gewinnspiel
Neue Nachrichten

0
Zend Framework 2.2.0 ver­spricht mehr Kon­sis­tenz

23
Firefox 22 aktiviert WebRTC

9
10 Jahre Groklaw

17
Kroatiens Prä­si­dent lobt den kreativen Geist der Open-Sour­ce Ge­mein­schaft

2
Sernet bietet Sam­ba4-Kom­plett­pa­ke­te für ver­schie­de­ne Dis­tri­bu­tio­nen

19
Linux: Si­cher­heits­lü­cke erlaubt Roo­t-Zu­griff

1
Ge­winn­spiel: Ein­tritts­kar­ten für den LinuxTag 2013

22
Neue An­dro­id-Ent­wick­lungs­um­ge­bung Android Studio

0
Open-IT Summit am 22. und 23. Mai auf dem LinuxTag

0
OpenAPC 3.0 mit Be­am­Con­struc­t-SDK
 
Werbung