Skip to navigation

Security Advisory Important: bind97 security update

Advisory: RHSA-2012:1266-1
Type: Security Advisory
Severity: Important
Issued on: 2012-09-14
Last updated on: 2012-09-14
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
CVEs (cve.mitre.org): CVE-2012-4244

Details

Updated bind97 packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.

A flaw was found in the way BIND handled resource records with a large
RDATA value. A malicious owner of a DNS domain could use this flaw to
create specially-crafted DNS resource records, that would cause a recursive
resolver or secondary server to exit unexpectedly with an assertion
failure. (CVE-2012-4244)

Users of bind97 are advised to upgrade to these updated packages, which
correct this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
bind97-9.7.0-10.P2.el5_8.3.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: d52738486e4c8bdb0f3995f883f99456
SHA-256: a7375dc777774ecd04e3ad480a0ff86790e500c308c39acc74f5dc0ea7ce53ac
 
IA-32:
bind97-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 34300ff3ffcfd77a81e9690e62be287b
SHA-256: 53cf703a320d12e965bdbe33ed2f5e368c5338fbe8e1ca9660d18961c4d57269
bind97-chroot-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7300b89faf4dac1971edea6b753c9fec
SHA-256: 0a4d0b4d063bc5775994a10d8de90f30e19e6760a627629f382d0c26de0af379
bind97-debuginfo-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: cea658cfcc4c03a4cb248a778ab5ed79
SHA-256: 8fa4e965e904bbde3bbcfdf7c9b77192b6bc70eff835e9cf316851e35bcaddea
bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9b40930df4f2e6c36ece07408b0f2002
SHA-256: a1ad71d283992fbfb90b9ad88bababdf1cdbce10ce4e7f12d77fc5734c58a816
bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: f32f982a87793a6580457c28116f3466
SHA-256: c5c6927ee140324da71db7e5c6155f6163f46db47d5169b368e59d99f9cc67b1
bind97-utils-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9e2019e80660ac6ff4ac6a545f9a0d07
SHA-256: 22f543bf0df0f4ab6bad22a39089186512ee55b7ca71aabc450cf5aa23a3b5be
 
x86_64:
bind97-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: bd0c356b2ddcc01ec6c657d987e46447
SHA-256: ded36dd9433f0d92dcb63304fb0ca6aa8bc92ff3d7b23b558eb8832ffc247e98
bind97-chroot-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 86a0b1ba6fece7c34b9fffc9bc40eb09
SHA-256: 5cf4c49a503243f8fd409443b805fcc844ae9c1629594f4bc44574901479714f
bind97-debuginfo-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: cea658cfcc4c03a4cb248a778ab5ed79
SHA-256: 8fa4e965e904bbde3bbcfdf7c9b77192b6bc70eff835e9cf316851e35bcaddea
bind97-debuginfo-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: de1cc307909db1671757b7ed64de4b3a
SHA-256: c2140a3100d61fd804f2fc678fc180d565703f20bb313b16e52c4ab76cb8f6d1
bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9b40930df4f2e6c36ece07408b0f2002
SHA-256: a1ad71d283992fbfb90b9ad88bababdf1cdbce10ce4e7f12d77fc5734c58a816
bind97-devel-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: c52da6e65926dadc262ec47e389a4988
SHA-256: b208d569470784601fd63b1164179bec1199ba99efe471ebfbe50180a2d4d8ea
bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: f32f982a87793a6580457c28116f3466
SHA-256: c5c6927ee140324da71db7e5c6155f6163f46db47d5169b368e59d99f9cc67b1
bind97-libs-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 3233491bff15dfd99f9d40a9188ab397
SHA-256: e0126f4e905137ecbad917936a02fff5f75a71be155aeef2394e7aa9cd3d6e70
bind97-utils-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: b0302131bfc54eb092d5812a06194b89
SHA-256: 9d4e879697c6a97ada02e0de68fca40fd2da40ea7b1882cf4b0b900094e8ffa5
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
bind97-9.7.0-10.P2.el5_8.3.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: d52738486e4c8bdb0f3995f883f99456
SHA-256: a7375dc777774ecd04e3ad480a0ff86790e500c308c39acc74f5dc0ea7ce53ac
 
IA-32:
bind97-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 34300ff3ffcfd77a81e9690e62be287b
SHA-256: 53cf703a320d12e965bdbe33ed2f5e368c5338fbe8e1ca9660d18961c4d57269
bind97-chroot-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7300b89faf4dac1971edea6b753c9fec
SHA-256: 0a4d0b4d063bc5775994a10d8de90f30e19e6760a627629f382d0c26de0af379
bind97-debuginfo-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: cea658cfcc4c03a4cb248a778ab5ed79
SHA-256: 8fa4e965e904bbde3bbcfdf7c9b77192b6bc70eff835e9cf316851e35bcaddea
bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9b40930df4f2e6c36ece07408b0f2002
SHA-256: a1ad71d283992fbfb90b9ad88bababdf1cdbce10ce4e7f12d77fc5734c58a816
bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: f32f982a87793a6580457c28116f3466
SHA-256: c5c6927ee140324da71db7e5c6155f6163f46db47d5169b368e59d99f9cc67b1
bind97-utils-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9e2019e80660ac6ff4ac6a545f9a0d07
SHA-256: 22f543bf0df0f4ab6bad22a39089186512ee55b7ca71aabc450cf5aa23a3b5be
 
IA-64:
bind97-9.7.0-10.P2.el5_8.3.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: edd78b83f8ee555ed46b9ac5f98864eb
SHA-256: af0e80ebd9147b371e5fb2965d849551bcae206d3c9ffc40380a137e1234c748
bind97-chroot-9.7.0-10.P2.el5_8.3.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: fbd3de6ec4e59754a0e7498d85aafc29
SHA-256: efb1720a23679c4243f787e6b46c3c651a97415dc6f64aa153ef3c36783a7dc6
bind97-debuginfo-9.7.0-10.P2.el5_8.3.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0cc9831692b0e092a0dc2a51e205834c
SHA-256: 6870ce865fde95c7012b8593af371383c41844946bbfd394b4203054e5e62070
bind97-devel-9.7.0-10.P2.el5_8.3.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 2e616ba68160975f61855fb439ec7c12
SHA-256: 37d95354a718cd143618fc27efb08e90fb00a1610e32b27f3ee267f64d38beeb
bind97-libs-9.7.0-10.P2.el5_8.3.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: dc767815b88ba374845a168a0c9ca3cf
SHA-256: b52dbf23f1d3f4b33366cffacd01166462568068064b20704b4b1ef57b6882e7
bind97-utils-9.7.0-10.P2.el5_8.3.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 1f70a075444d67da8fab07f302c9949d
SHA-256: a3c06f7e42e863fd140f33f4086a61c6fa4e1c15b5cdb9265b546d66cb26d770
 
PPC:
bind97-9.7.0-10.P2.el5_8.3.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: a3cddf1891b7517b05624cdf7821963a
SHA-256: da68bdbc960d0db389983d9e16136d72f79babb19c8fccca4502020ef5913496
bind97-chroot-9.7.0-10.P2.el5_8.3.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 91398b91dbf3c89d0031c636f718ead8
SHA-256: 90353e7a65bb6b5f77da6cf581bc3f9b2e2e85a1c44a5a764767d8b24e41df18
bind97-debuginfo-9.7.0-10.P2.el5_8.3.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9af119cc5457c0b6766665fc9d56616b
SHA-256: d395adf07fd94508d4a4d139a23a496b3aba7b4b62f0fb92a7657011a05f411c
bind97-debuginfo-9.7.0-10.P2.el5_8.3.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 292c04cf7502702f11234fd20e7c530e
SHA-256: 51d4761cf3c86e93b9d64607f2a126fab2d934007c88b6df103faa6de9bc5b6d
bind97-devel-9.7.0-10.P2.el5_8.3.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0dc403aed01db0c30207c0c4c9ba0788
SHA-256: 8babc7718925ba5515d7713a4c1c4484f637ba1e56445619854f3368b024c002
bind97-devel-9.7.0-10.P2.el5_8.3.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: bf4e7c16de00b1a4ba00eafb5eefd342
SHA-256: 647d43e2200918dee059a4b68e8427d45a835b4fc376838857e5c0aba8ad5bc2
bind97-libs-9.7.0-10.P2.el5_8.3.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 399fc97cee718a752fbdeebd245acfab
SHA-256: 6b9f9297a2f4ab8d64aa627f1d72587d357fb05bdf9f9567b93bdf49bddd443c
bind97-libs-9.7.0-10.P2.el5_8.3.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 32b80640dbdeb0d8c04cc4c479972ce8
SHA-256: 97bec0dbc65a105dbced8cad3c25b7e390dd2ac94f91828d371afdeb9a277559
bind97-utils-9.7.0-10.P2.el5_8.3.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 8c0bcd8beccb015c276bd7de22ee0b59
SHA-256: 8418a1b0b3b742db62c411c8aeb382842380f1ab73850defe26b5b40a5ecce35
 
s390x:
bind97-9.7.0-10.P2.el5_8.3.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 3971a4e1c18fbdb769e6fa12558c054f
SHA-256: da83f759028e332f02d448919865beafc1f3b5ddefb4586a61ee94dc2bce02f3
bind97-chroot-9.7.0-10.P2.el5_8.3.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 42212d35db0fe12d72d104a43961e8e5
SHA-256: e8c8c2a7e8b76cbed15b9b905666b54de7f9e9653df19bc4572ecaa6db60c3b5
bind97-debuginfo-9.7.0-10.P2.el5_8.3.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 38d7f8d61164d8f02526499766e013e1
SHA-256: ee5c8b1710b36424d36539213fcd06921343328251736692e66a7e52408714ec
bind97-debuginfo-9.7.0-10.P2.el5_8.3.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: c367533dd05fa7dfbceb80ddf2bd5752
SHA-256: 8164e4d91186fd2a7c5a510df88584e8de7bd7b0afa46790b31b44ccd005caad
bind97-devel-9.7.0-10.P2.el5_8.3.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: b77ee0182df9c77a1968c8ce0f9d90cf
SHA-256: 58f39a0ba04aea0c7086b0737cea434bbb171139c16285f4daec9efb75f97bb4
bind97-devel-9.7.0-10.P2.el5_8.3.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6ce0d2bd3ea0b8c62c33204f1a2e357b
SHA-256: a82d36d2dff4e7405a9ec3a53d9eb0cba71c5ddc0d4f8c2b5d462f40b00c9f74
bind97-libs-9.7.0-10.P2.el5_8.3.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 2b51d871bd0c7c6ee9ba1b473c9e9dfb
SHA-256: 423138b9a4317b8589aaff0ba38ba79edd87118b9fa9f9c1dd6776cb12c39f80
bind97-libs-9.7.0-10.P2.el5_8.3.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: d2f844e1208c5da63d93267114dd030f
SHA-256: d75334326da4d8498f98334525eac625103ce9b2d3c6a4308cd82094c8a998c5
bind97-utils-9.7.0-10.P2.el5_8.3.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4316dae6a4591120fb08969f27407776
SHA-256: 98c61fdc6842a81ca3a67b668f68f65e046d3fe61f2dd99b1193a871ab89efba
 
x86_64:
bind97-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: bd0c356b2ddcc01ec6c657d987e46447
SHA-256: ded36dd9433f0d92dcb63304fb0ca6aa8bc92ff3d7b23b558eb8832ffc247e98
bind97-chroot-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 86a0b1ba6fece7c34b9fffc9bc40eb09
SHA-256: 5cf4c49a503243f8fd409443b805fcc844ae9c1629594f4bc44574901479714f
bind97-debuginfo-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: cea658cfcc4c03a4cb248a778ab5ed79
SHA-256: 8fa4e965e904bbde3bbcfdf7c9b77192b6bc70eff835e9cf316851e35bcaddea
bind97-debuginfo-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: de1cc307909db1671757b7ed64de4b3a
SHA-256: c2140a3100d61fd804f2fc678fc180d565703f20bb313b16e52c4ab76cb8f6d1
bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 9b40930df4f2e6c36ece07408b0f2002
SHA-256: a1ad71d283992fbfb90b9ad88bababdf1cdbce10ce4e7f12d77fc5734c58a816
bind97-devel-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: c52da6e65926dadc262ec47e389a4988
SHA-256: b208d569470784601fd63b1164179bec1199ba99efe471ebfbe50180a2d4d8ea
bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: f32f982a87793a6580457c28116f3466
SHA-256: c5c6927ee140324da71db7e5c6155f6163f46db47d5169b368e59d99f9cc67b1
bind97-libs-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 3233491bff15dfd99f9d40a9188ab397
SHA-256: e0126f4e905137ecbad917936a02fff5f75a71be155aeef2394e7aa9cd3d6e70
bind97-utils-9.7.0-10.P2.el5_8.3.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: b0302131bfc54eb092d5812a06194b89
SHA-256: 9d4e879697c6a97ada02e0de68fca40fd2da40ea7b1882cf4b0b900094e8ffa5
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

856754 - CVE-2012-4244 bind: specially crafted resource record causes named to exit


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/