Skip to navigation

Security Advisory Important: bind97 security update

Advisory: RHSA-2011:1459-1
Type: Security Advisory
Severity: Important
Issued on: 2011-11-17
Last updated on: 2011-11-17
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
CVEs (cve.mitre.org): CVE-2011-4313

Details

Updated bind97 packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.

A flaw was discovered in the way BIND handled certain DNS queries, which
caused it to cache an invalid record. A remote attacker could use this
flaw to send repeated queries for this invalid record, causing the
resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)

Users of bind97 are advised to upgrade to these updated packages, which
resolve this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
bind97-9.7.0-6.P2.el5_7.4.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: 2b1af314e2628ab48030232616d323a9
SHA-256: 049b0bdcc0d59477d9fb11bc130a64cb484605ff2a9f3947f7affda6fd1e86a1
 
IA-32:
bind97-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: d1947c91d244ac02792bee59dda2bc1b
SHA-256: 4bf302f9f4a1484eb0535581bbb84dcad203717b9e7477344ee928f419d9a04c
bind97-chroot-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: ad71630b7b71f15ced2a68cc6522fb71
SHA-256: 8db941673b60f77b45a85a5e46415de74d5e7d3e3bdb3f036ec94b99d68ee51c
bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: e66994cbe8b2f0dcbb9359a7cdc6adcf
SHA-256: 182456d5f06dd8df05dd9f6e42461febdf4676a0174f10fd6f117373727d0f3b
bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4528344088905e885d7531ec598e86e4
SHA-256: 3df07c2e4648854d9e957c114865db81f65bda61214ad89492f6142ca973e268
bind97-utils-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 783d2199acb1e6e1c655809c85966a67
SHA-256: a7f6f75a6d9bf8724ad43591996992d1898296cb2d181818e9ed20e0237d6ae7
 
x86_64:
bind97-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: e16bc992cff00edfde62aaf1763c3f50
SHA-256: 624c0dcb7e7e2bcbc5715c7d4db166a144e40b014dd8e8f19c5bf9091781f356
bind97-chroot-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: f0406efa47dabec1f7825a008c917107
SHA-256: 7398a37864be0ada2e7cb5538fabd11f8bcf6dc69c0f2e8def5ac924be0c91a5
bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: e66994cbe8b2f0dcbb9359a7cdc6adcf
SHA-256: 182456d5f06dd8df05dd9f6e42461febdf4676a0174f10fd6f117373727d0f3b
bind97-devel-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0fc31cd9d442bd11ab333a11d3432950
SHA-256: 5114e81907936f6ba1fb8d07ba5506bfa9ab0e885a69233e0078cc892cc0f251
bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4528344088905e885d7531ec598e86e4
SHA-256: 3df07c2e4648854d9e957c114865db81f65bda61214ad89492f6142ca973e268
bind97-libs-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0053e55537f458d62e1326a8c772b5fd
SHA-256: 4d62039e78498f376cd9d9775154881070f448fb90bb47213e6d3da55ee0d7ca
bind97-utils-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 62c34c8aeb52b75c27a885569faf574d
SHA-256: d8972cbb2201f7c88080ec50e4c89ca03e64f7246c9703f5b14fc377087c7728
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
bind97-9.7.0-6.P2.el5_7.4.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: 2b1af314e2628ab48030232616d323a9
SHA-256: 049b0bdcc0d59477d9fb11bc130a64cb484605ff2a9f3947f7affda6fd1e86a1
 
IA-32:
bind97-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: d1947c91d244ac02792bee59dda2bc1b
SHA-256: 4bf302f9f4a1484eb0535581bbb84dcad203717b9e7477344ee928f419d9a04c
bind97-chroot-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: ad71630b7b71f15ced2a68cc6522fb71
SHA-256: 8db941673b60f77b45a85a5e46415de74d5e7d3e3bdb3f036ec94b99d68ee51c
bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: e66994cbe8b2f0dcbb9359a7cdc6adcf
SHA-256: 182456d5f06dd8df05dd9f6e42461febdf4676a0174f10fd6f117373727d0f3b
bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4528344088905e885d7531ec598e86e4
SHA-256: 3df07c2e4648854d9e957c114865db81f65bda61214ad89492f6142ca973e268
bind97-utils-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 783d2199acb1e6e1c655809c85966a67
SHA-256: a7f6f75a6d9bf8724ad43591996992d1898296cb2d181818e9ed20e0237d6ae7
 
IA-64:
bind97-9.7.0-6.P2.el5_7.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7e0e29d3ce518b7e95ec1eb5a7cc513e
SHA-256: 4228f9a3d476007f6c1501de41df9f17ea2196cd89a9ae9a5555ab3999be7322
bind97-chroot-9.7.0-6.P2.el5_7.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 80032b110c051ec687068a5afcf0ce9a
SHA-256: 9b6cae49fdbf6276d3baec042967c0d20a50ad647b670cd39e2fc85e177a36b3
bind97-devel-9.7.0-6.P2.el5_7.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 216a269caa82fc0fa89949f523e16195
SHA-256: 65280d8610e29899a46922a269b9a4305b32b9e5416906fdb18ed8f8bf22e103
bind97-libs-9.7.0-6.P2.el5_7.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: d66f55a733e83640569172058d6f9aa9
SHA-256: ba45cef67b2c7b55a7a461ff8efbc8f77c7e78443e8aa568836bfd76be1979a7
bind97-utils-9.7.0-6.P2.el5_7.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9264fd1d735d143f3a8571a5b9368484
SHA-256: 59bc5dd7a59dfb072e3c30721586e82316c2317c700f2914804930099f7dad26
 
PPC:
bind97-9.7.0-6.P2.el5_7.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: aad2f94d7bf82d48e1d0beb8eb9ef5c2
SHA-256: 42aa9cfd00f3ec601ffab743aef50a08e6c27c42107dafb4359dfdfe594858cc
bind97-chroot-9.7.0-6.P2.el5_7.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 42246e48e0448563076451631846a23e
SHA-256: 3b7cc08c59d853e837d35e43184f190ffd194ae37035d3e85bb93c69ed21cd46
bind97-devel-9.7.0-6.P2.el5_7.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 002e20f518f2aa9d95de50c9d69e277d
SHA-256: 663f667cbd8a61ae8fa38652cf537af50a3629935902c02325a47420e2c2913c
bind97-devel-9.7.0-6.P2.el5_7.4.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 1903685d3aa68584d5867a80c9f8db68
SHA-256: 3a3c212eef8ff133879cc6fc863db9515538d5a6b29eee0d6dd727949dcf0f21
bind97-libs-9.7.0-6.P2.el5_7.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: dc6a3421fb1c96d405af713b54d540c2
SHA-256: afe5182c7a068e31645bcc2c0a3e99c7d8740356a35279a67f6f1f2f672b641b
bind97-libs-9.7.0-6.P2.el5_7.4.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: e2f5ebbdf074f22405a797369ee217e2
SHA-256: 4cf3d9431f35253c260e4f441484b4d8c544fab139bde0ccf07394fb1e519355
bind97-utils-9.7.0-6.P2.el5_7.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7643436d9739187ead22d6b11ae383bb
SHA-256: adb9c387322b22c8ee2fd24661fa1c5b3e2ea34edec4471f8e036cf1490f1872
 
s390x:
bind97-9.7.0-6.P2.el5_7.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 1c0f297f3702fded156e97348dc09e6b
SHA-256: d9bd399429916b01d70ef71140fd733529bb76f2ac8a32c3a297ea4cd4337ce7
bind97-chroot-9.7.0-6.P2.el5_7.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: a2fc34d402a9c58b9f38578c86376b8e
SHA-256: f2561712badaf57704e1c71384e9b1d78c533cd07e702f13ff0ae20c02683966
bind97-devel-9.7.0-6.P2.el5_7.4.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 57b32615c1b68a9f7f33ee2de2f2a5eb
SHA-256: 642d7a8022619e9b0f0f3c23183b118f5b21784b4560557d47be9ddd2d6d4189
bind97-devel-9.7.0-6.P2.el5_7.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: a65eaf9bfc40480e1f08c569ef011b9b
SHA-256: 5fb9b70529a3b012074ecb8cc031cc6b86620613c0e8433167092b37bde58a67
bind97-libs-9.7.0-6.P2.el5_7.4.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: f239c32e7e43b9e970b3f51a155e1ef6
SHA-256: 09c6cf02b88d4ffdd77d53c24b77edcf077e53576de048134e18dac3c3d1c0e4
bind97-libs-9.7.0-6.P2.el5_7.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 338f02fdafe8b31a490c77b48912297c
SHA-256: d6ec4b9af1903630a26615c2771bf3f09da8e527b4ef84fe5d58282845c99acd
bind97-utils-9.7.0-6.P2.el5_7.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 31ebb5c0daa6fed317bf8752f0c0c6e6
SHA-256: 18e727b3849f551f1a726b28ab29d889d2c5017ebc7968c397056704e8aa28ae
 
x86_64:
bind97-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: e16bc992cff00edfde62aaf1763c3f50
SHA-256: 624c0dcb7e7e2bcbc5715c7d4db166a144e40b014dd8e8f19c5bf9091781f356
bind97-chroot-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: f0406efa47dabec1f7825a008c917107
SHA-256: 7398a37864be0ada2e7cb5538fabd11f8bcf6dc69c0f2e8def5ac924be0c91a5
bind97-devel-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: e66994cbe8b2f0dcbb9359a7cdc6adcf
SHA-256: 182456d5f06dd8df05dd9f6e42461febdf4676a0174f10fd6f117373727d0f3b
bind97-devel-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0fc31cd9d442bd11ab333a11d3432950
SHA-256: 5114e81907936f6ba1fb8d07ba5506bfa9ab0e885a69233e0078cc892cc0f251
bind97-libs-9.7.0-6.P2.el5_7.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4528344088905e885d7531ec598e86e4
SHA-256: 3df07c2e4648854d9e957c114865db81f65bda61214ad89492f6142ca973e268
bind97-libs-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0053e55537f458d62e1326a8c772b5fd
SHA-256: 4d62039e78498f376cd9d9775154881070f448fb90bb47213e6d3da55ee0d7ca
bind97-utils-9.7.0-6.P2.el5_7.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 62c34c8aeb52b75c27a885569faf574d
SHA-256: d8972cbb2201f7c88080ec50e4c89ca03e64f7246c9703f5b14fc377087c7728
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

754398 - CVE-2011-4313 bind: Remote denial of service against recursive servers via logging negative cache entry


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/