Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 3703-1] bind9 security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 3703-1] bind9 security update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Florian Weimer <fw AT deneb.enyo.de>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 3703-1] bind9 security update
  • Date: Tue, 01 Nov 2016 22:49:58 +0100
  • List-archive: https://lists.debian.org/msgid-search/878tt250qh.fsf AT mid.deneb.enyo.de
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-return-path: <fw AT deneb.enyo.de>
  • Priority: urgent
  • Resent-date: Tue, 1 Nov 2016 21:50:16 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <yJn0_mdoE9.A.TZG.Y4QGYB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-3703-1 security AT debian.org
https://www.debian.org/security/ Florian Weimer
November 01, 2016 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : bind9
CVE ID : CVE-2016-8864
Debian Bug : 842858

Tony Finch and Marco Davids reported an assertion failure in BIND, a
DNS server implementation, which causes the server process to
terminate. This denial-of-service vulnerability is related to a
defect in the processing of responses with DNAME records from
authoritative servers and primarily affects recursive resolvers.

For the stable distribution (jessie), this problem has been fixed in
version 1:9.9.5.dfsg-9+deb8u8.

We recommend that you upgrade your bind9 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iQEcBAEBAgAGBQJYGReoAAoJEL97/wQC1SS+4RQH+wc73x8MRFd+jWShqFWzNbbG
BkKff8Q6yGvvJqOlwBBm7+je9r/NpeRPKkjzfOQlzw/vFzQw4KVVTzM/7FRJBoXR
AmfBjnl7LOmiqIlRxEMkJUhcnq5z3ATPqtgiz+es6/uQJXWFmufv7hrZ4Yh89EOP
c5uJpXipy4bhBMukovcs3qyLHCf5dKxiwW9i1XhV4uJueSWgyM80a+UoeHZgyBFi
lYSFPwFr7T1SjVZuzRX9HhbZhyS+YC5Kg6vqMpZ0iP5RS1ZbgFAQM91i9vxpZOh3
QopQ2TOaqwjVdKNA8JhpawHoTx4t+bbdH+T416cUQJwivyS2j7rT2iWVuFcpG1o=
=kaus
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 3703-1] bind9 security update, Florian Weimer, 01.11.2016

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang