Izdana nova verzija programskog paketa bind

Izdana je nova verzija programskog paketa bind kojom su ispravljene dvije ranjivosti te mnogo sigurnosnih "bugova" u radu ISC BIND softvera na operacijskom sustavu Mandriva. Prva ranjivost je posljedica neispravnog baratanja pojedinim velikim RRSIG RRsets zapisima unutar DNSSEC negativnih odgovora, a napadaču omogućuje izvođenje DoS napada i rušenje bind servisa. Druga ranjivost potencijalnim napadačima omogućuje provođenje DoS napada, a može se iskoristiti i s udaljenog računala. Uzrok ranjivosti je neispravna obrada UPDATE zahtjeva. Svim korisnicima savjetuje se instalacija nove verzije paketa 9.7.4.

Izvorni tekst preporuke

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Advisory MDVA-2011:027
http://www.mandriva.com/security/
_______________________________________________________________________

Package : bind
Date : August 6, 2011
Affected: 2009.0, 2010.1, Enterprise Server 5.0
_______________________________________________________________________

Problem Description:

This is maintenance release that upgrades ISC BIND to the 9.7.4
version that addresses a lot of upstream bugs and fixes.
_______________________________________________________________________

References:

ftp://ftp.isc.org/isc/bind9/9.7.4/RELEASE-NOTES-BIND-9.7.4.html
_______________________________________________________________________

Updated Packages:

Mandriva Linux 2009.0:
9640fefcc41957306c80f262a90f3287 2009.0/i586/bind-9.7.4-0.0.0.1.1mdv2009.0.i586.rpm
dc6eeee76a42fba8eaedd792aa1fb887 2009.0/i586/bind-devel-9.7.4-0.0.0.1.1mdv2009.0.i586.rpm
3cca20386923947fde7b07d4fdad204a 2009.0/i586/bind-doc-9.7.4-0.0.0.1.1mdv2009.0.i586.rpm
d80ebae679abb1ce7ef3cf34603d8186 2009.0/i586/bind-utils-9.7.4-0.0.0.1.1mdv2009.0.i586.rpm
3cc4154509f40425bf33c0864239474a 2009.0/SRPMS/bind-9.7.4-0.0.0.1.1mdv2009.0.src.rpm

Mandriva Linux 2009.0/X86_64:
125e2ebfe2013513e4c5e64b3f11e739 2009.0/x86_64/bind-9.7.4-0.0.0.1.1mdv2009.0.x86_64.rpm
e0d273554d1f09880b2b90cad0a6f669 2009.0/x86_64/bind-devel-9.7.4-0.0.0.1.1mdv2009.0.x86_64.rpm
d8bb03723d47012e539c3d3ec3bd658f 2009.0/x86_64/bind-doc-9.7.4-0.0.0.1.1mdv2009.0.x86_64.rpm
686a8f949920536a0b2e654697f153a6 2009.0/x86_64/bind-utils-9.7.4-0.0.0.1.1mdv2009.0.x86_64.rpm
3cc4154509f40425bf33c0864239474a 2009.0/SRPMS/bind-9.7.4-0.0.0.1.1mdv2009.0.src.rpm

Mandriva Linux 2010.1:
885409d06e23c4e41c6e6ec80710cac1 2010.1/i586/bind-9.7.4-0.0.0.1.1mdv2010.2.i586.rpm
48540150a34a09e67cbfec0cb5a63e10 2010.1/i586/bind-devel-9.7.4-0.0.0.1.1mdv2010.2.i586.rpm
3d31b7eec87e77434244d26c63ec3006 2010.1/i586/bind-doc-9.7.4-0.0.0.1.1mdv2010.2.i586.rpm
2a330c5bf22e43dd8b16c0eb75598548 2010.1/i586/bind-utils-9.7.4-0.0.0.1.1mdv2010.2.i586.rpm
4bfa3a50acab006b2e09f314a7db27e7 2010.1/SRPMS/bind-9.7.4-0.0.0.1.1mdv2010.2.src.rpm

Mandriva Linux 2010.1/X86_64:
6809adc4985c809d78d15779e9b5605a 2010.1/x86_64/bind-9.7.4-0.0.0.1.1mdv2010.2.x86_64.rpm
7a4f8226dd3b20f1ef555b28f2934195 2010.1/x86_64/bind-devel-9.7.4-0.0.0.1.1mdv2010.2.x86_64.rpm
57706d77d03c3a3aecd0231e15e0ad0c 2010.1/x86_64/bind-doc-9.7.4-0.0.0.1.1mdv2010.2.x86_64.rpm
62419b0e876a40345c1d24cce07b002f 2010.1/x86_64/bind-utils-9.7.4-0.0.0.1.1mdv2010.2.x86_64.rpm
4bfa3a50acab006b2e09f314a7db27e7 2010.1/SRPMS/bind-9.7.4-0.0.0.1.1mdv2010.2.src.rpm

Mandriva Enterprise Server 5:
4e189b278241fc18af94896bd14a5d29 mes5/i586/bind-9.7.4-0.0.0.1.1mdvmes5.2.i586.rpm
e23daf78b0764b0e007e9c82906a21e7 mes5/i586/bind-devel-9.7.4-0.0.0.1.1mdvmes5.2.i586.rpm
bfeb8bf89cef3b68913c6766818ee7e9 mes5/i586/bind-doc-9.7.4-0.0.0.1.1mdvmes5.2.i586.rpm
4ec8c67e7244de7b3e9d762a0a733b1d mes5/i586/bind-utils-9.7.4-0.0.0.1.1mdvmes5.2.i586.rpm
8a37a6704bcc86b8bfb7cbc70e711be7 mes5/SRPMS/bind-9.7.4-0.0.0.1.1mdvmes5.2.src.rpm

Mandriva Enterprise Server 5/X86_64:
fa4e3b43ecd2747511f40a27be37db0b mes5/x86_64/bind-9.7.4-0.0.0.1.1mdvmes5.2.x86_64.rpm
cba4a2b5d06ba80b19debe864c4aa2c2 mes5/x86_64/bind-devel-9.7.4-0.0.0.1.1mdvmes5.2.x86_64.rpm
12ac91ff72b8cf93997c6fcf9f436568 mes5/x86_64/bind-doc-9.7.4-0.0.0.1.1mdvmes5.2.x86_64.rpm
3c3deb3b5b59d2a909b3fee9b2641c2e mes5/x86_64/bind-utils-9.7.4-0.0.0.1.1mdvmes5.2.x86_64.rpm
8a37a6704bcc86b8bfb7cbc70e711be7 mes5/SRPMS/bind-9.7.4-0.0.0.1.1mdvmes5.2.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iD8DBQFOPQNgmqjQ0CJFipgRAoZnAJ9zyIB/yd0YNi4vtPCuRpwFA0v4TQCcC2YT
VmlfRbLIBKpttTAAPs0hgpg=
=qmlk
-----END PGP SIGNATURE-----

To unsubscribe, send a email to Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
with this subject : unsubscribe security-announce
_______________________________________________________
Want to buy your Pack or Services from Mandriva?
Go to http://www.mandrivastore.com
Join the Club : http://www.mandrivaclub.com
_______________________________________________________

Izdana nova verzija programskog paketa bind

Tražilica portala

Aktivnosti

O CIS-u

Posljednje vijesti

Posljednji dokumenti

Izdana nova verzija programskog paketa bind

Tražilica portala

Aktivnosti

O CIS-u

Posljednje sigurnosne preporuke

Posljednje vijesti

Popularni članci

Posljednji dokumenti