U radu programskog paketa BIND otkrivena je sigurnosna ranjivost koju udaljeni napadač može iskoristiti za izvođenje napada uskraćivanjem usluge.
| Paket: | BIND 9.x |
| Operacijski sustavi: | CentOS |
| Kritičnost: | 6.8 |
| Problem: | pogreška u programskoj komponenti |
| Iskorištavanje: | udaljeno |
| Posljedica: | uskraćivanje usluga (DoS) |
| Rješenje: | programska zakrpa proizvođača |
| CVE: | CVE-2012-4244 |
| Izvorni ID preporuke: | 2012:1268 |
| Izvor: | CentOS |
| Problem: | |
| Spomenuta je ranjivost posljedica nepravilnosti u rukovanju izvornim zapisima s velikom RDATA vrijednošću. |
|
| Posljedica: | |
| Napadačima omogućuje izvođenje DoS (Denial of Service) napada. |
|
| Rješenje: | |
| Svim korisnicima ranjivog paketa preporuča se nadogradnja. |
|
Izvorni tekst preporuke
CentOS Errata and Security Advisory 2012:1268 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1268.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
177a20dfa81e8aa52f1dfd0b32be6fe90d1c9741e4440a39d31338ec9dcd4f48
bind-9.8.2-0.10.rc1.el6_3.3.i686.rpm
a7bcc8677edc77a551924353952e331b2ac84facff5c4f0e0a3c5ef14f35f476
bind-chroot-9.8.2-0.10.rc1.el6_3.3.i686.rpm
6d1b677ab0c3c15f19372e1ed0e593a5f1b848f2f8a5ca39550f5555dfd4afca
bind-devel-9.8.2-0.10.rc1.el6_3.3.i686.rpm
3d0386a69a83a42f3f32cde9386c00ffb391c3d5f29626b6e4ff27d92d08e25c
bind-libs-9.8.2-0.10.rc1.el6_3.3.i686.rpm
c2e5d1d45d34d6839d9f3e00f2d414ee106d4a3e082d5fe6f7818d92dadf7de9
bind-sdb-9.8.2-0.10.rc1.el6_3.3.i686.rpm
f0d7cc2d8b296f1ebf1eceb4502e80067a73e9a76b6fb7935af7e303a0691cc7
bind-utils-9.8.2-0.10.rc1.el6_3.3.i686.rpm
x86_64:
5bbbfff3f23fe9097e159ba3664aa2c28ae3fd377ed85bd6d3147a816b0a30b9
bind-9.8.2-0.10.rc1.el6_3.3.x86_64.rpm
95e8ccd3bcd33dec98be6c56405bf857a030f37bdd9db23c109ff6118a7c4104
bind-chroot-9.8.2-0.10.rc1.el6_3.3.x86_64.rpm
6d1b677ab0c3c15f19372e1ed0e593a5f1b848f2f8a5ca39550f5555dfd4afca
bind-devel-9.8.2-0.10.rc1.el6_3.3.i686.rpm
5fd2f871878566cd313d3a6f88a6b76a6cc1eb9e88767e0fc249d9529c0ecc10
bind-devel-9.8.2-0.10.rc1.el6_3.3.x86_64.rpm
3d0386a69a83a42f3f32cde9386c00ffb391c3d5f29626b6e4ff27d92d08e25c
bind-libs-9.8.2-0.10.rc1.el6_3.3.i686.rpm
78c784a2a3f07c26f850621be2acd169920ba898b254aad5389e65ae2f45dafc
bind-libs-9.8.2-0.10.rc1.el6_3.3.x86_64.rpm
22940b33bb99064a56e198b847f103036f534aa79fb2383df67c80d742406ee4
bind-sdb-9.8.2-0.10.rc1.el6_3.3.x86_64.rpm
b4dd9b0ea398fa9742cd2ee1cad4ca70c7ad0d7139d44beb52e8289947dd60a5
bind-utils-9.8.2-0.10.rc1.el6_3.3.x86_64.rpm
Source:
13482e806a4ff0ecae5bba160e0ff1641e75727c86c3c06eb6f61918b5d07b29
bind-9.8.2-0.10.rc1.el6_3.3.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
CentOS Errata and Security Advisory 2012:1266 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1266.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
bd2a22c259f0b45cd5731e071f025014fe32afc8db9496408efb3b89427008b3
bind97-9.7.0-10.P2.el5_8.3.i386.rpm
d2cf078f7432a704546e401a3781663f0c43cb0b40de0b1817a5725178788bae
bind97-chroot-9.7.0-10.P2.el5_8.3.i386.rpm
8914931e1cb6b5d63313b238552f86cf10000c4dc971cff1b9ffa04309481963
bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm
2ac1acb17b5aa8ce18fc99bbf485db81d84e2aafedcaabd765a2710c0c96d48c
bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm
aac09b86630f7bf90fa5b88ae848bbd2295130dbc0559f1efd019e4aacf81019
bind97-utils-9.7.0-10.P2.el5_8.3.i386.rpm
x86_64:
fe8a008941f7d8e3fb5babdbb6d7a64b967614521a0ab751791a026213786310
bind97-9.7.0-10.P2.el5_8.3.x86_64.rpm
88b0d4cf64b62c55ddc3120e3b99cb3a17fa389dd72eb0f8ed2a3ae38f8c73d0
bind97-chroot-9.7.0-10.P2.el5_8.3.x86_64.rpm
8914931e1cb6b5d63313b238552f86cf10000c4dc971cff1b9ffa04309481963
bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm
42294c9be8114098f1465269296056a2a9fa061a816c39894017c9b18789ce6c
bind97-devel-9.7.0-10.P2.el5_8.3.x86_64.rpm
2ac1acb17b5aa8ce18fc99bbf485db81d84e2aafedcaabd765a2710c0c96d48c
bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm
7d663ccb2c0bcea65ce7e0aba2019884baa1523abc725a61af559bb71d2a1f51
bind97-libs-9.7.0-10.P2.el5_8.3.x86_64.rpm
223f846eb30d37d84be54c7fbbd2bd6790e9e273dbd9f7f3af5b90e882f3a92c
bind97-utils-9.7.0-10.P2.el5_8.3.x86_64.rpm
Source:
eda6407bb7f2e52d545508815ca8efc51087455e31aa088034a2fef2f2ac6016
bind97-9.7.0-10.P2.el5_8.3.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
CentOS Errata and Security Advisory 2012:1267 Important
Upstream details at : https://rhn.redhat.com/errata/RHSA-2012-1267.html
The following updated files have been uploaded and are currently
syncing to the mirrors: ( sha256sum Filename )
i386:
39c8c9238abf9b335f1ed003f35d9e9e3f6b3305308178579825ecc610dfe5d6
bind-9.3.6-20.P1.el5_8.4.i386.rpm
7418897dbc146eb801df3aac10e98fe3e4f77bfe8c56c9cc9a0d7a4389599873
bind-chroot-9.3.6-20.P1.el5_8.4.i386.rpm
611d515d65dd3486568482afc045786e40749d42d5ed689f56fbe40980a0da49
bind-devel-9.3.6-20.P1.el5_8.4.i386.rpm
3228f24ee3c1a30c2a44bd4b8aa122722108e3a112cf835d3582dfb8b03cb486
bind-libbind-devel-9.3.6-20.P1.el5_8.4.i386.rpm
fe18d6ce4364979bc39fe72fd321b55ade17cba945d4769b1570c66a5c3d6806
bind-libs-9.3.6-20.P1.el5_8.4.i386.rpm
c3bf71bf6c52a36bab641f622a119249ac0f3f240bb7589c6dfcb78394892149
bind-sdb-9.3.6-20.P1.el5_8.4.i386.rpm
5c75bec8f7a212244480835cbc0fff342c72c588b7e0946e2afbcf7c4e2716d0
bind-utils-9.3.6-20.P1.el5_8.4.i386.rpm
8d62ed78cce8e4616edd4093fc5769fec881de4725def0bae7195f5b7d2c7dce
caching-nameserver-9.3.6-20.P1.el5_8.4.i386.rpm
x86_64:
42fb9afa4c0f7df4b39222211a6adf00ff427b9d5c8fe4df5bec3d4bd1c5cab1
bind-9.3.6-20.P1.el5_8.4.x86_64.rpm
6795f80c9bd814619463e950ad6149a287ca5cee5d03ea6e1fb343e64679a770
bind-chroot-9.3.6-20.P1.el5_8.4.x86_64.rpm
611d515d65dd3486568482afc045786e40749d42d5ed689f56fbe40980a0da49
bind-devel-9.3.6-20.P1.el5_8.4.i386.rpm
15d5c169e0a4556f7e624e89edb20b10980c29d4026f5ddfbd12e5a57b05bc36
bind-devel-9.3.6-20.P1.el5_8.4.x86_64.rpm
3228f24ee3c1a30c2a44bd4b8aa122722108e3a112cf835d3582dfb8b03cb486
bind-libbind-devel-9.3.6-20.P1.el5_8.4.i386.rpm
232d0f803b61b39c279c6ed83c8ac7cb7f27e70e2ce7629411a94c572f105527
bind-libbind-devel-9.3.6-20.P1.el5_8.4.x86_64.rpm
fe18d6ce4364979bc39fe72fd321b55ade17cba945d4769b1570c66a5c3d6806
bind-libs-9.3.6-20.P1.el5_8.4.i386.rpm
83aac226b7b3f924f9ef445fc20af33d7ec8278da8d3cf87becdd21a11401268
bind-libs-9.3.6-20.P1.el5_8.4.x86_64.rpm
ddff8db89998d2451a1830f62ee93e30fee18af51d992ebeddd8592a6a098b41
bind-sdb-9.3.6-20.P1.el5_8.4.x86_64.rpm
124fc4452aff664342ad15b7858c944b97b14177a5774bfb09018f84cad69c6f
bind-utils-9.3.6-20.P1.el5_8.4.x86_64.rpm
0a42bef4310c2e419d1aa2c29cc878ac52be87c0b6cddf4d5d2e1d554d9632c7
caching-nameserver-9.3.6-20.P1.el5_8.4.x86_64.rpm
Source:
e97427aad294edad237a5d8af78327fa77e5d1a4a5e4e6dbfc95a3e4d1eff8b2
bind-9.3.6-20.P1.el5_8.4.src.rpm
--
Johnny Hughes
CentOS Project { http://www.centos.org/ }
irc: hughesjr, #Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
_______________________________________________
CentOS-announce mailing list
Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.
http://lists.centos.org/mailman/listinfo/centos-announce
Posljednje sigurnosne preporuke