drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in bind
Name: |
Denial of Service in bind |
|
ID: |
TLSA-2007-9 |
|
Distribution: |
TurboLinux |
|
Plattformen: |
Turbolinux FUJI, Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux 8 Server, Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal, Turbolinux Appliance Server 1.0 Hosting Edition, Turbolinux Appliance Server 1.0 Workgroup Edition |
|
Datum: |
Do, 1. März 2007, 03:50 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0494 |
|
Applikationen: |
BIND |
|
Originalnachricht |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
-------------------------------------------------------------------------- Turbolinux Security Advisory TLSA-2007-9 http://www.turbolinux.co.jp/security/ security-team@turbolinux.co.jp --------------------------------------------------------------------------
Original released date: 28 Feb 2007 Last revised: 28 Feb 2007
Package: bind
Summary: bind denial of service attack
More information: Bind includes the named name server, which resolves host names to IP addresses (and vice versa), and a resolver library (a set of routines in a system library that provide the interface for programs to use when accessing domain name services).
Bind may allow remote attackers to cause a denial of service via a type * (ANY) DNS query response that contains multiple RRsets, which triggers an assertion error, aka the "DNSSEC Validation" vulnerability.
Impact: The bind allows remote attackers to cause a denial of service.
Affected Products: - Turbolinux Appliance Server 2.0 - Turbolinux FUJI - Turbolinux 10 Server x64 Edition - Turbolinux Appliance Server 1.0 Hosting Edition - Turbolinux Appliance Server 1.0 Workgroup Edition - Turbolinux 10 Server - Turbolinux Home - Turbolinux 10 F... - Turbolinux 10 Desktop - Turbolinux Multimedia - Turbolinux Personal - Turbolinux 8 Server
<Turbolinux Appliance Server 2.0>
Source Packages Size: MD5
bind-9.2.3-10.src.rpm 3525210 f71da19572a365fb72ca436d47c0fca8
Binary Packages Size: MD5
bind-9.2.3-10.i586.rpm 371132 6465a5bfbfafd01662290066af45be95 bind-chroot-9.2.3-10.i586.rpm 9295 397ea6d24b9ba648c7ceace35bff1279 bind-libs-9.2.3-10.i586.rpm 411944 c19656036be280260ef894aea4f1ce5b bind-utils-9.2.3-10.i586.rpm 96407 0c4a3872100320c00899d5db0ed41b71
<Turbolinux FUJI>
Source Packages Size: MD5
bind-9.2.5-6.src.rpm 4505553 b075ca2c09db1ea934346e53aa46e1b5
Binary Packages Size: MD5
bind-devel-9.2.5-6.i686.rpm 2196490 f1442b4c1bffcfde0f7053b455b96502 bind-libs-9.2.5-6.i686.rpm 485238 745d2c6252b1041a87a077a33f89adb5 bind-utils-9.2.5-6.i686.rpm 125802 fa2910086b5caa22f7ed33bec7faa29b
<Turbolinux 10 Server x64 Edition>
Source Packages Size: MD5
bind-9.2.3-10.src.rpm 3525210 30a7af3464bb52d1b83c9cc97aa75115
Binary Packages Size: MD5
bind-9.2.3-10.x86_64.rpm 398055 43e72dfa3eda615c675bf525257366ff bind-chroot-9.2.3-10.x86_64.rpm 9222 94ef65a886ec6ffad3bc41a829bc49c4 bind-libs-9.2.3-10.x86_64.rpm 514910 c1b5a3edbe7b8267dfd07728c6654c6b bind-utils-9.2.3-10.x86_64.rpm 107814 26d3298fe7353ba67a7bf12fae569165
<Turbolinux Appliance Server 1.0 Hosting Edition>
Source Packages Size: MD5
bind-9.2.1-6.src.rpm 4969837 cd0439793db489706cdb53effad253b1
Binary Packages Size: MD5
bind-9.2.1-6.i586.rpm 2744781 84d6343d8050aad4b8ed046a1c8bf945 bind-devel-9.2.1-6.i586.rpm 723804 e7de6a937172cf70d05e293934052e52 bind-utils-9.2.1-6.i586.rpm 1702508 af85d78e0aa589df098de7aaf6154cb1
<Turbolinux Appliance Server 1.0 Workgroup Edition>
Source Packages Size: MD5
bind-9.2.1-6.src.rpm 4969837 39f5bcd2196bfd992bea257aa669632c
Binary Packages Size: MD5
bind-9.2.1-6.i586.rpm 2744544 0894b097f568e463919b9108b3fdc82d bind-devel-9.2.1-6.i586.rpm 724022 ea0d926a9b7164e67eced04a49767e81 bind-utils-9.2.1-6.i586.rpm 1702616 f39af434238da17ca98ea972fdef9805
<Turbolinux 10 Server>
Source Packages Size: MD5
bind-9.2.3-10.src.rpm 3525210 f71da19572a365fb72ca436d47c0fca8
Binary Packages Size: MD5
bind-9.2.3-10.i586.rpm 371132 6465a5bfbfafd01662290066af45be95 bind-chroot-9.2.3-10.i586.rpm 9295 397ea6d24b9ba648c7ceace35bff1279 bind-libs-9.2.3-10.i586.rpm 411944 c19656036be280260ef894aea4f1ce5b bind-utils-9.2.3-10.i586.rpm 96407 0c4a3872100320c00899d5db0ed41b71
<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal>
Source Packages Size: MD5
bind-9.2.1-6.src.rpm 4969837 1496306b1ded4396b6238ff7c99f19a5
Binary Packages Size: MD5
bind-utils-9.2.1-6.i586.rpm 1680220 1b9ee40d64ba58d8bf2943a9ded79037
<Turbolinux 8 Server>
Source Packages Size: MD5
bind-9.2.1-6.src.rpm 4969837 5a1d994368a3b74d660ab8b3f7749b12
Binary Packages Size: MD5
bind-9.2.1-6.i586.rpm 2744106 58fc423a191b1e0bda9bcfeb17d7dddf bind-devel-9.2.1-6.i586.rpm 724143 b71b585624132e590a8fe079eba2341c bind-utils-9.2.1-6.i586.rpm 1702428 127663f4c956eae185ac9a7a01b47a63
References:
CVE [CVE-2007-0494] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0494
-------------------------------------------------------------------------- Revision History 28 Feb 2007 Initial release --------------------------------------------------------------------------
Copyright(C) 2007 Turbolinux, Inc. All rights reserved.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (GNU/Linux)
iD8DBQFF5SbaK0LzjOqIJMwRAix9AJ9FtG9j5rqf/OADcxpWSPoqWQA0jwCgueIn AeBGQisA6WM43GDlXDPgAoA= =DSlD -----END PGP SIGNATURE-----
|
|
|
|