Skip to navigation

Security Advisory Important: bind97 security update

Advisory: RHSA-2012:1122-1
Type: Security Advisory
Severity: Important
Issued on: 2012-07-31
Last updated on: 2012-07-31
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
CVEs (cve.mitre.org): CVE-2012-3817

Details

Updated bind97 packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.

An uninitialized data structure use flaw was found in BIND when DNSSEC
validation was enabled. A remote attacker able to send a large number of
queries to a DNSSEC validating BIND resolver could use this flaw to cause
it to exit unexpectedly with an assertion failure. (CVE-2012-3817)

Users of bind97 are advised to upgrade to these updated packages, which
correct this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
bind97-9.7.0-10.P2.el5_8.2.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: 5150fc4f7a0ed17947e6d62b9db91731
SHA-256: 67e6491633c4f3a7ca2c66c2ac8ac5a6cee320674e3f8b711df7e41a4cb0f844
 
IA-32:
bind97-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9bd639f40ca3ccd6d52d9a0f446e8ece
SHA-256: 13fd11eee004dd77a6753db72729cf0598390282d300e5464309a6cd068dd5e8
bind97-chroot-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 1fde6db56e56c5157470d6078b156bd0
SHA-256: 0881d77866624ccfe4b2783fbe3bb411939951ef8dbc0433420f20bf3db2a609
bind97-debuginfo-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 509f0f1b17fff20b3c83c297e03efe72
SHA-256: 7a55514ece83b88beff3c144eea5e0a9bfbd9dc81ad5c86d813a886a3a729592
bind97-devel-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 5e7e2ad38cf264cdb6cded9de2bbaf43
SHA-256: 7e89198f3c32e64a9e2d43d2177f8481d1ed6317ee94d6b7b056c0693bbc704d
bind97-libs-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 952de3cffc6c8c9f33a9628a56b5c3ef
SHA-256: 9fb9712aff640c498fe55b1f4b34e983492965922e5bf1c319b5e33ffac60023
bind97-utils-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 08564be306a98c7afee8be5e70c21a64
SHA-256: c02d816f291736d00f899ff46fe684ec0850b57f7a4694b3c418ec0eb9ea2e9b
 
x86_64:
bind97-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: d65240c97d26157a306698781761f73b
SHA-256: a9ac2a10c15f1b37d31d3e46a80341334316be390d17531f7b4c5064e30540fa
bind97-chroot-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: a5e5142e67cdaa0a952a31d8668a9669
SHA-256: 620334a22490f7cbc491261e97d82f45d72529048d660e45453e40b91d40e5e4
bind97-debuginfo-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 509f0f1b17fff20b3c83c297e03efe72
SHA-256: 7a55514ece83b88beff3c144eea5e0a9bfbd9dc81ad5c86d813a886a3a729592
bind97-debuginfo-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: b5f22e63254f5f7574cfb68320624307
SHA-256: ec6293960af09dfaeb9252ae32f95b4ceabffd203e1fadf358f9aeac16fa128f
bind97-devel-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 5e7e2ad38cf264cdb6cded9de2bbaf43
SHA-256: 7e89198f3c32e64a9e2d43d2177f8481d1ed6317ee94d6b7b056c0693bbc704d
bind97-devel-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: cbb73729793128e452e9402e6fb5f0ac
SHA-256: 55617d4a0855d96e1f7535dac92daa1a87dd625a86f1f840942e56fd08d9c1ae
bind97-libs-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 952de3cffc6c8c9f33a9628a56b5c3ef
SHA-256: 9fb9712aff640c498fe55b1f4b34e983492965922e5bf1c319b5e33ffac60023
bind97-libs-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 466ba54969bf40c9089fe60f0528c142
SHA-256: 1b1dc35eb9cabd3dcec4178c66a5aeb0335e2865bc816d80d085a17d7e2cd9f5
bind97-utils-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: ef8a86e0642f90c3d3f655504f20e628
SHA-256: c482552d982b7005c0001096e4b79fae994907c06a668d68a68da2bf2558abf7
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
bind97-9.7.0-10.P2.el5_8.2.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: 5150fc4f7a0ed17947e6d62b9db91731
SHA-256: 67e6491633c4f3a7ca2c66c2ac8ac5a6cee320674e3f8b711df7e41a4cb0f844
 
IA-32:
bind97-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9bd639f40ca3ccd6d52d9a0f446e8ece
SHA-256: 13fd11eee004dd77a6753db72729cf0598390282d300e5464309a6cd068dd5e8
bind97-chroot-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 1fde6db56e56c5157470d6078b156bd0
SHA-256: 0881d77866624ccfe4b2783fbe3bb411939951ef8dbc0433420f20bf3db2a609
bind97-debuginfo-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 509f0f1b17fff20b3c83c297e03efe72
SHA-256: 7a55514ece83b88beff3c144eea5e0a9bfbd9dc81ad5c86d813a886a3a729592
bind97-devel-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 5e7e2ad38cf264cdb6cded9de2bbaf43
SHA-256: 7e89198f3c32e64a9e2d43d2177f8481d1ed6317ee94d6b7b056c0693bbc704d
bind97-libs-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 952de3cffc6c8c9f33a9628a56b5c3ef
SHA-256: 9fb9712aff640c498fe55b1f4b34e983492965922e5bf1c319b5e33ffac60023
bind97-utils-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 08564be306a98c7afee8be5e70c21a64
SHA-256: c02d816f291736d00f899ff46fe684ec0850b57f7a4694b3c418ec0eb9ea2e9b
 
IA-64:
bind97-9.7.0-10.P2.el5_8.2.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 1f7a96d4c3de3a75a43b78fd0bc9753c
SHA-256: cc6cacd970b5783df5004419033dbc86a553671a6b7a21e86ed8c7a4a667263c
bind97-chroot-9.7.0-10.P2.el5_8.2.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: c0c2082060c152e4690ade9d84aaf145
SHA-256: 18505dd10857b950beea6e6ba860ec0884d8959156a173598e0e6ce87250e9b3
bind97-debuginfo-9.7.0-10.P2.el5_8.2.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: f65c21e694a94fac8d2a7afcd98fa742
SHA-256: ebcec166c73b4e1ac0bca74df8e4588e1100f638bac3bb006e33854a37447482
bind97-devel-9.7.0-10.P2.el5_8.2.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9bb65c00d9e96d1e111726c024b8f825
SHA-256: c317df659501e2a590e427e166bc54a8be86147fd1820cd6b0ee5f0153a4f3a1
bind97-libs-9.7.0-10.P2.el5_8.2.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 3af4f3d5d9dd3837a2ed7d1a85e545cc
SHA-256: 056916bb516209ad978874e8461eee8e1a4ca26b4222c052b201ec6f67c59a0f
bind97-utils-9.7.0-10.P2.el5_8.2.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 2360391f16e71d53c9a5b560db0617df
SHA-256: 2da4c151b3ca457449b149e49559504ec2014bdba2e6a39c465a94f4a6dce3ed
 
PPC:
bind97-9.7.0-10.P2.el5_8.2.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: bdd535f3f795551416af0098dfd20afd
SHA-256: 2b8d2aa09846b8be43c1b713a5e24344865f782004425c0c07c1260e2893339f
bind97-chroot-9.7.0-10.P2.el5_8.2.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 98a638f181bf7ef8558b5dbe91c0d122
SHA-256: e43d9282047c4d6d4a1dc8e2b10defa72ae39e8b4e4bb972fa0b935edd7f3fee
bind97-debuginfo-9.7.0-10.P2.el5_8.2.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 26b52d778125c7b9e464dfab0a05bec1
SHA-256: f664009e2c293dd2d7cece33152e2fb607e1541077caab8cbe83ebb1bd6d2a1a
bind97-debuginfo-9.7.0-10.P2.el5_8.2.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: e8f0ccaefbe16e75d9648347b538352b
SHA-256: 8826396fe1d36726fce577f397a3af2e281eeb150f3a24506101dfb5920dc50c
bind97-devel-9.7.0-10.P2.el5_8.2.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: e03a511a94b2f7c7541d85dae53d403c
SHA-256: 83d7df2d29b4bf007a5d468fa1741a5a51b843e8beb0b5be895ce8bb7854876a
bind97-devel-9.7.0-10.P2.el5_8.2.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: e7decbb339b97c5277a234b275856b1d
SHA-256: 63dad75b255376d458ba41dae6bd01cb15798124f3e3c71379fb2bc2d9e52b17
bind97-libs-9.7.0-10.P2.el5_8.2.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: dd09ab288f94e4a27848bc685c5bb38a
SHA-256: cc29f5a4083b1d339a36c1a80f6a2d56eb8c0b56b3448f61850a985acdf10da9
bind97-libs-9.7.0-10.P2.el5_8.2.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: f82f0e8f66d707147c83ff4398f26ffa
SHA-256: bfea63c36789bc3063165b85ef6628f7eae25e42218cb9f3f6ab0317a41b6814
bind97-utils-9.7.0-10.P2.el5_8.2.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 082fe47ceb0167025fd69703b642b2de
SHA-256: fdda7509c97acbe87f5ca87dd952acbffafef8b7089e8f564af368ab833d5cb9
 
s390x:
bind97-9.7.0-10.P2.el5_8.2.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: f7b437736755bfc1c472c22ae613e8f2
SHA-256: 0006319a3d7e39ad224d4c9388dae957d60fe7240373fbe1aca1f99ea617edf3
bind97-chroot-9.7.0-10.P2.el5_8.2.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0255a743728f1bc750eb6802404315b7
SHA-256: 3761144cf4c7f597e309d1b5c667c7825f921037814e0274e311f86fd6b8dfed
bind97-debuginfo-9.7.0-10.P2.el5_8.2.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 89c496dc5d6cc78d8f8820fd4e53c39b
SHA-256: 614a6a2fd2c1c0e4176080791163129100c382b13fc8b10b8b28a3c35c02d7e3
bind97-debuginfo-9.7.0-10.P2.el5_8.2.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: f3444b2e063d5d3e500feafde1ee1109
SHA-256: b9787d2f526166a49481b567f0d5515cc1364b02b98f1659bcb9fa6f8c5b88c4
bind97-devel-9.7.0-10.P2.el5_8.2.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 07f5b635b22b65aa8dde0a3b10938315
SHA-256: 3039ce77f5aa47007de5b8b59fb9d887cb281c847645ac7f642505567fe74c70
bind97-devel-9.7.0-10.P2.el5_8.2.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6a7c90dfa19573914793f095ba5ae2de
SHA-256: 84645616b80c582207547f22f5e7a2bfa5a09d741eef037cc298440ab4ddcd73
bind97-libs-9.7.0-10.P2.el5_8.2.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7bfe84aa0382ed314d8af045793a787b
SHA-256: e35318f3325de37bb85ae4841874c75f6cf5f7d2eb0de60c70b16aac16caf928
bind97-libs-9.7.0-10.P2.el5_8.2.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: a43f99cf7fd8d458a8c0e26b8cf6e4fd
SHA-256: fe480ed44eaf2de1c1a98f5588cd722b5e26cc78d22f48542c1a4e94515eefe6
bind97-utils-9.7.0-10.P2.el5_8.2.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 60649cf792f051b1917fb8ceb42ae0b1
SHA-256: dfd793152e402c8eedff72017527bc088cca5f5252deef9b54f086639e802084
 
x86_64:
bind97-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: d65240c97d26157a306698781761f73b
SHA-256: a9ac2a10c15f1b37d31d3e46a80341334316be390d17531f7b4c5064e30540fa
bind97-chroot-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: a5e5142e67cdaa0a952a31d8668a9669
SHA-256: 620334a22490f7cbc491261e97d82f45d72529048d660e45453e40b91d40e5e4
bind97-debuginfo-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 509f0f1b17fff20b3c83c297e03efe72
SHA-256: 7a55514ece83b88beff3c144eea5e0a9bfbd9dc81ad5c86d813a886a3a729592
bind97-debuginfo-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: b5f22e63254f5f7574cfb68320624307
SHA-256: ec6293960af09dfaeb9252ae32f95b4ceabffd203e1fadf358f9aeac16fa128f
bind97-devel-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 5e7e2ad38cf264cdb6cded9de2bbaf43
SHA-256: 7e89198f3c32e64a9e2d43d2177f8481d1ed6317ee94d6b7b056c0693bbc704d
bind97-devel-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: cbb73729793128e452e9402e6fb5f0ac
SHA-256: 55617d4a0855d96e1f7535dac92daa1a87dd625a86f1f840942e56fd08d9c1ae
bind97-libs-9.7.0-10.P2.el5_8.2.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 952de3cffc6c8c9f33a9628a56b5c3ef
SHA-256: 9fb9712aff640c498fe55b1f4b34e983492965922e5bf1c319b5e33ffac60023
bind97-libs-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 466ba54969bf40c9089fe60f0528c142
SHA-256: 1b1dc35eb9cabd3dcec4178c66a5aeb0335e2865bc816d80d085a17d7e2cd9f5
bind97-utils-9.7.0-10.P2.el5_8.2.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: ef8a86e0642f90c3d3f655504f20e628
SHA-256: c482552d982b7005c0001096e4b79fae994907c06a668d68a68da2bf2558abf7
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

842897 - CVE-2012-3817 bind: heavy DNSSEC validation load can cause assertion failure


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/