Skip to navigation

Security Advisory Important: bind security update

Advisory: RHSA-2011:1496-1
Type: Security Advisory
Severity: Important
Issued on: 2011-11-29
Last updated on: 2011-11-29
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2011-4313

Details

Updated bind packages that fix one security issue are now available for
Red Hat Enterprise Linux 4.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.

A flaw was discovered in the way BIND handled certain DNS queries, which
caused it to cache an invalid record. A remote attacker could use this
flaw to send repeated queries for this invalid record, causing the
resolvers to exit unexpectedly due to a failed assertion. (CVE-2011-4313)

Users of bind are advised to upgrade to these updated packages, which
resolve this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

Red Hat Desktop (v. 4)

SRPMS:
bind-9.2.4-38.el4.src.rpm     MD5: 8a8515dc3620b1615f08e96bd18132c8
SHA-256: 33e8f3134fa8e6f754f54ad5c2b910029d22a6ae7a33f010461d81469d78b66d
 
IA-32:
bind-9.2.4-38.el4.i386.rpm     MD5: 5f8f3bf495eb57e521fe64371fd4ae36
SHA-256: f8ee023d0ff57f61ce7a47c5ab0ad9506cc9d618b6cf1089571c3c74107b6e20
bind-chroot-9.2.4-38.el4.i386.rpm     MD5: 810aaff0bbc5d1f1eae6abeac587d0c3
SHA-256: 47a40d452ceb9ab973deefe6faf97f75be1f83342153064ec27851b7c92dbefe
bind-devel-9.2.4-38.el4.i386.rpm     MD5: 502552bfb680e1245b6686d5ccebb5d3
SHA-256: e6673833ecc213294e3bace3a3b603a7ebd3250e3b81f9da8e38e8e7fd869cac
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-utils-9.2.4-38.el4.i386.rpm     MD5: c749cf84c0a4d81bc5d46e0943140505
SHA-256: 7ffdeb751b10b1f2349014039b74e872f4d871446383d74ea58dff26e8fac558
 
x86_64:
bind-9.2.4-38.el4.x86_64.rpm     MD5: a180280781ecaa642c0325ebe07cde49
SHA-256: 089ae3adbef8a334ba65960a4a0d03ff8031ef7d3af71c9aa1d75e1ff22e6630
bind-chroot-9.2.4-38.el4.x86_64.rpm     MD5: c97f01967b882284da7ad2c4673479c3
SHA-256: c859d3e80942fdd9ade9416139a0346c93bc4941e7d981cd7bd6043de639b855
bind-devel-9.2.4-38.el4.x86_64.rpm     MD5: 0165ed569128e7b2009456dea22c1626
SHA-256: 2fa32b24807efe5825d1d12e72ef235ea447de21344e2e7cb45f26d998b7160c
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.x86_64.rpm     MD5: f149f62475d13a0d6989c131c40ecfa9
SHA-256: 11840c5e52bb7e20864b26a26c02d310b8477c4835c434a4e072ff1023f4185d
bind-utils-9.2.4-38.el4.x86_64.rpm     MD5: 7a22cf661468c73431b327534d6ad155
SHA-256: 2993600d400b69fe0a76b18e576dad430aa665804bd0f08c9054d1610d4f51af
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
bind-9.2.4-38.el4.src.rpm     MD5: 8a8515dc3620b1615f08e96bd18132c8
SHA-256: 33e8f3134fa8e6f754f54ad5c2b910029d22a6ae7a33f010461d81469d78b66d
 
IA-32:
bind-9.2.4-38.el4.i386.rpm     MD5: 5f8f3bf495eb57e521fe64371fd4ae36
SHA-256: f8ee023d0ff57f61ce7a47c5ab0ad9506cc9d618b6cf1089571c3c74107b6e20
bind-chroot-9.2.4-38.el4.i386.rpm     MD5: 810aaff0bbc5d1f1eae6abeac587d0c3
SHA-256: 47a40d452ceb9ab973deefe6faf97f75be1f83342153064ec27851b7c92dbefe
bind-devel-9.2.4-38.el4.i386.rpm     MD5: 502552bfb680e1245b6686d5ccebb5d3
SHA-256: e6673833ecc213294e3bace3a3b603a7ebd3250e3b81f9da8e38e8e7fd869cac
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-utils-9.2.4-38.el4.i386.rpm     MD5: c749cf84c0a4d81bc5d46e0943140505
SHA-256: 7ffdeb751b10b1f2349014039b74e872f4d871446383d74ea58dff26e8fac558
 
IA-64:
bind-9.2.4-38.el4.ia64.rpm     MD5: 039384573ff2ce8c48455102eadabdf4
SHA-256: 05543b2cdaf9d44c16e03277cb792ce91a0fffdca5fa6abc2f65f13469884310
bind-chroot-9.2.4-38.el4.ia64.rpm     MD5: fc27c324d58c2c7385178383a37ec28e
SHA-256: c14dbf66a51509f9987fb0fa8fb329de81013791edf02ed81c939c77968a1dde
bind-devel-9.2.4-38.el4.ia64.rpm     MD5: 6d331db7f6b32386ad230412227b5510
SHA-256: 9035c0af74531fba4e4de7543c76952598928c5599fdae3da9baea8c39acb739
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.ia64.rpm     MD5: 823c5e8298b1650090cda9f7f3e185b1
SHA-256: 7556c436b19b5a32567f9af7fa7a86927cf6e107bfb1be3ead9eec54cc55f60a
bind-utils-9.2.4-38.el4.ia64.rpm     MD5: 20f5aee2f310d5380240328ae4fc146b
SHA-256: 0d6849318c12763a4a5df8b812dea7c388a1711a65f250e51d7258273fb94784
 
PPC:
bind-9.2.4-38.el4.ppc.rpm     MD5: a131c0485277b373d50e5a56a2d942d3
SHA-256: ad4018e1d9b1b8990a2ca797324318f8fb2a8d6da4dbaff9029a66bf7d6f04c0
bind-chroot-9.2.4-38.el4.ppc.rpm     MD5: 6639d737b7d36fffa62064646e45431d
SHA-256: 1318533f892e668c41583dea0d49486af03b3a226fdb3ccf36c4854c84186709
bind-devel-9.2.4-38.el4.ppc.rpm     MD5: 6a052945c7e0f5dfa0ea144c05d98967
SHA-256: e362535e79b12ea3c9d779790e78edf7dad282b732c44d31bdb00cb2f1974594
bind-libs-9.2.4-38.el4.ppc.rpm     MD5: f44084d6e1ae426a05fd0e8580d839c4
SHA-256: 993ca15dce79fbe459112f854a91a7f8ced256895f64efcdaf2497b0fe45676d
bind-libs-9.2.4-38.el4.ppc64.rpm     MD5: d3c77b2b0601f9ce7c2dfc03580752d7
SHA-256: 0cb5f61c67e80310a6f90fa42e08cbef2090f7aa3afb1d3cf010710633ead3b2
bind-utils-9.2.4-38.el4.ppc.rpm     MD5: bdeaa90860673510b5d80cad32a4d532
SHA-256: 9249ca2e349ed01638030b1c1954b1a31b4388928caba32670fbc96febc3c414
 
s390:
bind-9.2.4-38.el4.s390.rpm     MD5: 7efb221691cebcdca47d41c5fbdf1ea9
SHA-256: 56aaf1886803c7db29a8e199a82791989b732d85ea2a0a1c7e410f2036c5f7e8
bind-chroot-9.2.4-38.el4.s390.rpm     MD5: a1d2e86a90c4b596d55eeed1d2abe530
SHA-256: df5aaa98a9f0f442ff4ccc2a8984ffade581810630752a14944f11464096f8a2
bind-devel-9.2.4-38.el4.s390.rpm     MD5: 085440d562650892a21f7962df92b858
SHA-256: 4aa76ab8d0befcdec1f26ada06fb5128188a12d70b291ca891e9339fe43b8ab0
bind-libs-9.2.4-38.el4.s390.rpm     MD5: be8e8cdd7075cd62d8ebaf7f91aa8d75
SHA-256: 3b1bc0bed177283b1362eb079d81eb48764856ea7d51ea2eea583e7ad1066dcf
bind-utils-9.2.4-38.el4.s390.rpm     MD5: c006bb4ef0f14c83cea66616dfff818e
SHA-256: 4514b92e97145a744575f383cad96863b3c377e2abd89f467fae5b09f22cfb1c
 
s390x:
bind-9.2.4-38.el4.s390x.rpm     MD5: 72267edb25a2772ea5d5757146021acc
SHA-256: 1cb6afd79953fc961c38badd4d514af5034fcdc4cbc58252866666766435a3a0
bind-chroot-9.2.4-38.el4.s390x.rpm     MD5: 432e9fd60a20f1336da2b4c8f7b3da54
SHA-256: f0105e0672c72aa07e688f19fd31cd7f6475a91f3b28460f6e85f76d6ab3bb9e
bind-devel-9.2.4-38.el4.s390x.rpm     MD5: 01e6f989113478d25e43c9ffb2b76612
SHA-256: 943387815dc8d6106e0bbcca91fc3a435bf674a58448251a208e26892b1b5872
bind-libs-9.2.4-38.el4.s390.rpm     MD5: be8e8cdd7075cd62d8ebaf7f91aa8d75
SHA-256: 3b1bc0bed177283b1362eb079d81eb48764856ea7d51ea2eea583e7ad1066dcf
bind-libs-9.2.4-38.el4.s390x.rpm     MD5: 8839b79459c3b84cfcce1c85df502091
SHA-256: 6ce32ff194288de807a589693e87be738ac048c3208bf5d529c0bc760cc9bcde
bind-utils-9.2.4-38.el4.s390x.rpm     MD5: f31946bfae9d3599d40b56ac994165e3
SHA-256: 2e5461803af3fa7fb6977cc2d3d3020066f5811abff5a0ad6bcaa800165b6616
 
x86_64:
bind-9.2.4-38.el4.x86_64.rpm     MD5: a180280781ecaa642c0325ebe07cde49
SHA-256: 089ae3adbef8a334ba65960a4a0d03ff8031ef7d3af71c9aa1d75e1ff22e6630
bind-chroot-9.2.4-38.el4.x86_64.rpm     MD5: c97f01967b882284da7ad2c4673479c3
SHA-256: c859d3e80942fdd9ade9416139a0346c93bc4941e7d981cd7bd6043de639b855
bind-devel-9.2.4-38.el4.x86_64.rpm     MD5: 0165ed569128e7b2009456dea22c1626
SHA-256: 2fa32b24807efe5825d1d12e72ef235ea447de21344e2e7cb45f26d998b7160c
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.x86_64.rpm     MD5: f149f62475d13a0d6989c131c40ecfa9
SHA-256: 11840c5e52bb7e20864b26a26c02d310b8477c4835c434a4e072ff1023f4185d
bind-utils-9.2.4-38.el4.x86_64.rpm     MD5: 7a22cf661468c73431b327534d6ad155
SHA-256: 2993600d400b69fe0a76b18e576dad430aa665804bd0f08c9054d1610d4f51af
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
bind-9.2.4-38.el4.src.rpm     MD5: 8a8515dc3620b1615f08e96bd18132c8
SHA-256: 33e8f3134fa8e6f754f54ad5c2b910029d22a6ae7a33f010461d81469d78b66d
 
IA-32:
bind-9.2.4-38.el4.i386.rpm     MD5: 5f8f3bf495eb57e521fe64371fd4ae36
SHA-256: f8ee023d0ff57f61ce7a47c5ab0ad9506cc9d618b6cf1089571c3c74107b6e20
bind-chroot-9.2.4-38.el4.i386.rpm     MD5: 810aaff0bbc5d1f1eae6abeac587d0c3
SHA-256: 47a40d452ceb9ab973deefe6faf97f75be1f83342153064ec27851b7c92dbefe
bind-devel-9.2.4-38.el4.i386.rpm     MD5: 502552bfb680e1245b6686d5ccebb5d3
SHA-256: e6673833ecc213294e3bace3a3b603a7ebd3250e3b81f9da8e38e8e7fd869cac
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-utils-9.2.4-38.el4.i386.rpm     MD5: c749cf84c0a4d81bc5d46e0943140505
SHA-256: 7ffdeb751b10b1f2349014039b74e872f4d871446383d74ea58dff26e8fac558
 
IA-64:
bind-9.2.4-38.el4.ia64.rpm     MD5: 039384573ff2ce8c48455102eadabdf4
SHA-256: 05543b2cdaf9d44c16e03277cb792ce91a0fffdca5fa6abc2f65f13469884310
bind-chroot-9.2.4-38.el4.ia64.rpm     MD5: fc27c324d58c2c7385178383a37ec28e
SHA-256: c14dbf66a51509f9987fb0fa8fb329de81013791edf02ed81c939c77968a1dde
bind-devel-9.2.4-38.el4.ia64.rpm     MD5: 6d331db7f6b32386ad230412227b5510
SHA-256: 9035c0af74531fba4e4de7543c76952598928c5599fdae3da9baea8c39acb739
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.ia64.rpm     MD5: 823c5e8298b1650090cda9f7f3e185b1
SHA-256: 7556c436b19b5a32567f9af7fa7a86927cf6e107bfb1be3ead9eec54cc55f60a
bind-utils-9.2.4-38.el4.ia64.rpm     MD5: 20f5aee2f310d5380240328ae4fc146b
SHA-256: 0d6849318c12763a4a5df8b812dea7c388a1711a65f250e51d7258273fb94784
 
x86_64:
bind-9.2.4-38.el4.x86_64.rpm     MD5: a180280781ecaa642c0325ebe07cde49
SHA-256: 089ae3adbef8a334ba65960a4a0d03ff8031ef7d3af71c9aa1d75e1ff22e6630
bind-chroot-9.2.4-38.el4.x86_64.rpm     MD5: c97f01967b882284da7ad2c4673479c3
SHA-256: c859d3e80942fdd9ade9416139a0346c93bc4941e7d981cd7bd6043de639b855
bind-devel-9.2.4-38.el4.x86_64.rpm     MD5: 0165ed569128e7b2009456dea22c1626
SHA-256: 2fa32b24807efe5825d1d12e72ef235ea447de21344e2e7cb45f26d998b7160c
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.x86_64.rpm     MD5: f149f62475d13a0d6989c131c40ecfa9
SHA-256: 11840c5e52bb7e20864b26a26c02d310b8477c4835c434a4e072ff1023f4185d
bind-utils-9.2.4-38.el4.x86_64.rpm     MD5: 7a22cf661468c73431b327534d6ad155
SHA-256: 2993600d400b69fe0a76b18e576dad430aa665804bd0f08c9054d1610d4f51af
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
bind-9.2.4-38.el4.src.rpm     MD5: 8a8515dc3620b1615f08e96bd18132c8
SHA-256: 33e8f3134fa8e6f754f54ad5c2b910029d22a6ae7a33f010461d81469d78b66d
 
IA-32:
bind-9.2.4-38.el4.i386.rpm     MD5: 5f8f3bf495eb57e521fe64371fd4ae36
SHA-256: f8ee023d0ff57f61ce7a47c5ab0ad9506cc9d618b6cf1089571c3c74107b6e20
bind-chroot-9.2.4-38.el4.i386.rpm     MD5: 810aaff0bbc5d1f1eae6abeac587d0c3
SHA-256: 47a40d452ceb9ab973deefe6faf97f75be1f83342153064ec27851b7c92dbefe
bind-devel-9.2.4-38.el4.i386.rpm     MD5: 502552bfb680e1245b6686d5ccebb5d3
SHA-256: e6673833ecc213294e3bace3a3b603a7ebd3250e3b81f9da8e38e8e7fd869cac
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-utils-9.2.4-38.el4.i386.rpm     MD5: c749cf84c0a4d81bc5d46e0943140505
SHA-256: 7ffdeb751b10b1f2349014039b74e872f4d871446383d74ea58dff26e8fac558
 
IA-64:
bind-9.2.4-38.el4.ia64.rpm     MD5: 039384573ff2ce8c48455102eadabdf4
SHA-256: 05543b2cdaf9d44c16e03277cb792ce91a0fffdca5fa6abc2f65f13469884310
bind-chroot-9.2.4-38.el4.ia64.rpm     MD5: fc27c324d58c2c7385178383a37ec28e
SHA-256: c14dbf66a51509f9987fb0fa8fb329de81013791edf02ed81c939c77968a1dde
bind-devel-9.2.4-38.el4.ia64.rpm     MD5: 6d331db7f6b32386ad230412227b5510
SHA-256: 9035c0af74531fba4e4de7543c76952598928c5599fdae3da9baea8c39acb739
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.ia64.rpm     MD5: 823c5e8298b1650090cda9f7f3e185b1
SHA-256: 7556c436b19b5a32567f9af7fa7a86927cf6e107bfb1be3ead9eec54cc55f60a
bind-utils-9.2.4-38.el4.ia64.rpm     MD5: 20f5aee2f310d5380240328ae4fc146b
SHA-256: 0d6849318c12763a4a5df8b812dea7c388a1711a65f250e51d7258273fb94784
 
x86_64:
bind-9.2.4-38.el4.x86_64.rpm     MD5: a180280781ecaa642c0325ebe07cde49
SHA-256: 089ae3adbef8a334ba65960a4a0d03ff8031ef7d3af71c9aa1d75e1ff22e6630
bind-chroot-9.2.4-38.el4.x86_64.rpm     MD5: c97f01967b882284da7ad2c4673479c3
SHA-256: c859d3e80942fdd9ade9416139a0346c93bc4941e7d981cd7bd6043de639b855
bind-devel-9.2.4-38.el4.x86_64.rpm     MD5: 0165ed569128e7b2009456dea22c1626
SHA-256: 2fa32b24807efe5825d1d12e72ef235ea447de21344e2e7cb45f26d998b7160c
bind-libs-9.2.4-38.el4.i386.rpm     MD5: 5170137b16e6f200b4d3ca31cfb479bc
SHA-256: fff3129f006e4444bc1e858ae16d6137f29d6b1b47abe47cbee56760180be9d0
bind-libs-9.2.4-38.el4.x86_64.rpm     MD5: f149f62475d13a0d6989c131c40ecfa9
SHA-256: 11840c5e52bb7e20864b26a26c02d310b8477c4835c434a4e072ff1023f4185d
bind-utils-9.2.4-38.el4.x86_64.rpm     MD5: 7a22cf661468c73431b327534d6ad155
SHA-256: 2993600d400b69fe0a76b18e576dad430aa665804bd0f08c9054d1610d4f51af
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

754398 - CVE-2011-4313 bind: Remote denial of service against recursive servers via logging negative cache entry


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/