Skip to navigation

Security Advisory Important: bind97 security update

Advisory: RHSA-2012:1364-1
Type: Security Advisory
Severity: Important
Issued on: 2012-10-12
Last updated on: 2012-10-12
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
CVEs (cve.mitre.org): CVE-2012-5166

Details

Updated bind97 packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
important security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from the
CVE link in the References section.

The Berkeley Internet Name Domain (BIND) is an implementation of the
Domain Name System (DNS) protocols. BIND includes a DNS server (named); a
resolver library (routines for applications to use when interfacing with
DNS); and tools for verifying that the DNS server is operating correctly.

A flaw was found in the way BIND handled certain combinations of resource
records. A remote attacker could use this flaw to cause a recursive
resolver, or an authoritative server in certain configurations, to lockup.
(CVE-2012-5166)

Users of bind97 are advised to upgrade to these updated packages, which
correct this issue. After installing the update, the BIND daemon (named)
will be restarted automatically.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
bind97-9.7.0-10.P2.el5_8.4.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7babf1af37341de50a1435e5ba9d89de
SHA-256: 29d6e0b6f0f3e15a32a3ee5496ba67b3a6a01de60601b62475a878f3cbec061d
 
IA-32:
bind97-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: e47b59442860d20f1b570077d416f497
SHA-256: 94d2a400dbaa21003ec7e8ee3ec45021a041ae40e25230d774d50ada2719aea3
bind97-chroot-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 19c2abaa3e38ba7e2d85967df5a17d12
SHA-256: 75eed118c2ed61b5b99e3cdb484e2b81b57b2937eeac23cc55ce65fffe25b4e2
bind97-debuginfo-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 8a8417e362cfaa9a63c46e86d86d018b
SHA-256: 8a535c1303551a77593d7d4907fbc3d233b3f7546c28ce1659bbb8a2d018937a
bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: d3f7334a7e07ff0a2572e3661e6caee2
SHA-256: 3276f1538c7b0f904adb68a90d2f84f70d4bf80a1ed547e351b7ab5c62ff1329
bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6efff08c3165347eff77db65adea2fd2
SHA-256: 68395660ba45e2dc360cad5d4fd2b2a336150054afbdb92ddd41ebe3816ae6a6
bind97-utils-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 029a25c5580e67b4b87c3b6777d58d53
SHA-256: 27f6e242b808f81fb71ebac0bc7e0ae14cf932dae17472e7a19b2494d922ff19
 
x86_64:
bind97-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: a4633bd095c1c378843ec522fea031ff
SHA-256: fc7421a9cb36666e59518ed6e0edfa9bb296b7ef02c6a6e8cf31592af91e5e71
bind97-chroot-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 42bbecb31887b4f7ba38ec3bbcbe61d1
SHA-256: ca68b6697f773e5eddbea10c36acb65e1b994582ac9848f7fbfe71aeb5d0c6b2
bind97-debuginfo-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 8a8417e362cfaa9a63c46e86d86d018b
SHA-256: 8a535c1303551a77593d7d4907fbc3d233b3f7546c28ce1659bbb8a2d018937a
bind97-debuginfo-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 74054e7709076c4fb5eb80045491b03d
SHA-256: 3914f0985a2b2773ced25fc41c9a47eef87a8a0bed09239e34e84d726b062059
bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: d3f7334a7e07ff0a2572e3661e6caee2
SHA-256: 3276f1538c7b0f904adb68a90d2f84f70d4bf80a1ed547e351b7ab5c62ff1329
bind97-devel-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: af7b1244aa383b7ef5aa5f57fe8b7114
SHA-256: 47433a4b833097c0055588c8bfd2950c19918369487a6e596d55fabb448b8e00
bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6efff08c3165347eff77db65adea2fd2
SHA-256: 68395660ba45e2dc360cad5d4fd2b2a336150054afbdb92ddd41ebe3816ae6a6
bind97-libs-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: dbd59a810f3932f1fcd974f1672ede5b
SHA-256: 8acdfa4d75fda34d50a8b6f3b652e2e9684fc9813eeab8e6afbcd2f0272a2cd2
bind97-utils-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4750be6070f001f68a5fdf669bd76b8b
SHA-256: d15cc2d8d5802895b90c12ab0883468fa66be0fc16ef880d9c49215eb5d4203c
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
bind97-9.7.0-10.P2.el5_8.4.src.rpm
File outdated by:  RHSA-2013:1115
    MD5: 7babf1af37341de50a1435e5ba9d89de
SHA-256: 29d6e0b6f0f3e15a32a3ee5496ba67b3a6a01de60601b62475a878f3cbec061d
 
IA-32:
bind97-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: e47b59442860d20f1b570077d416f497
SHA-256: 94d2a400dbaa21003ec7e8ee3ec45021a041ae40e25230d774d50ada2719aea3
bind97-chroot-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 19c2abaa3e38ba7e2d85967df5a17d12
SHA-256: 75eed118c2ed61b5b99e3cdb484e2b81b57b2937eeac23cc55ce65fffe25b4e2
bind97-debuginfo-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 8a8417e362cfaa9a63c46e86d86d018b
SHA-256: 8a535c1303551a77593d7d4907fbc3d233b3f7546c28ce1659bbb8a2d018937a
bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: d3f7334a7e07ff0a2572e3661e6caee2
SHA-256: 3276f1538c7b0f904adb68a90d2f84f70d4bf80a1ed547e351b7ab5c62ff1329
bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6efff08c3165347eff77db65adea2fd2
SHA-256: 68395660ba45e2dc360cad5d4fd2b2a336150054afbdb92ddd41ebe3816ae6a6
bind97-utils-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 029a25c5580e67b4b87c3b6777d58d53
SHA-256: 27f6e242b808f81fb71ebac0bc7e0ae14cf932dae17472e7a19b2494d922ff19
 
IA-64:
bind97-9.7.0-10.P2.el5_8.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: d5eaf063d3e952603938637fd5149fec
SHA-256: 870aa507cf8f04c5d542520bae640a77572d8240ba12f40ed6470bdd0742bcda
bind97-chroot-9.7.0-10.P2.el5_8.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6635f99dd223de42ee0f99502876e39a
SHA-256: e127ed6430cde9f220f0f0ae69d849de62f435eb81359a5d4ac5ccfd57dce33d
bind97-debuginfo-9.7.0-10.P2.el5_8.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: f20c6e777e02dcb6bf36d2584ef7b675
SHA-256: e8ea88268d73c3106918a9a1498b442ac4b0fc48339916d84defdb24402429e9
bind97-devel-9.7.0-10.P2.el5_8.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 0e4b1f1317b8a76202ca61afc749280f
SHA-256: b114a763b6ef00e81dbd1e9cdceafaed21f623d55b6b263353c9258f8599a11e
bind97-libs-9.7.0-10.P2.el5_8.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: e03280c13757dc545e19fd54de877770
SHA-256: 092b9049eff3c0dd636f4a97dcdaa95e5c731d14741f0cdb5978503b4d21faf0
bind97-utils-9.7.0-10.P2.el5_8.4.ia64.rpm
File outdated by:  RHSA-2013:1115
    MD5: d7502228aaf72920ef01a0292d611811
SHA-256: 49fe0091970fc840e9d0407bfc45e826c95fa4af9aef0ed7d2f5fb2cc141c742
 
PPC:
bind97-9.7.0-10.P2.el5_8.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 785e00e19fcbef0a7158cc1d7b41518a
SHA-256: 733d8c8c5f6a68661bace80774acf58b7890829278eea65333e84f8d72712cc1
bind97-chroot-9.7.0-10.P2.el5_8.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: df48cca3fd523075aa7e20e976108c13
SHA-256: 0ab059097539dc08b605f2d93bd2a19706ef891ccabb853b4a13c8310ec9ee93
bind97-debuginfo-9.7.0-10.P2.el5_8.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: 97531e03199c008a92b1471da6770864
SHA-256: 0f232bb4009b1a9a355bac7a90af716e3f46562b8ed830fb41996dd22ad10fbd
bind97-debuginfo-9.7.0-10.P2.el5_8.4.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 3f25371b9f44915456359cebfe2b4168
SHA-256: 6a7caa1dcfa20a3626d1115c67b3fc48f5ef71fb3a59a698e1323ec572d4728d
bind97-devel-9.7.0-10.P2.el5_8.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: c1f51020f0b006bee51ee3458951a08a
SHA-256: 51e979c99122505376af438e90c934e788973598f33bbe6412b4e7cf633ba96c
bind97-devel-9.7.0-10.P2.el5_8.4.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 2714b0b68acafdfeb94d75c2a41e0b90
SHA-256: fcb11f3d07d34bfa0805531264223e0d197eb5e751e0fa75e625b749d5f7d30e
bind97-libs-9.7.0-10.P2.el5_8.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: b93be9de530849f8e85b34e8294fdc11
SHA-256: d79712a97b58f6597ae9cc3bbbdd11dbef3f9cc285e4c906ac6d0e5a144e4874
bind97-libs-9.7.0-10.P2.el5_8.4.ppc64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 960fa35a7c4657214ee9b2e3184705e9
SHA-256: 8fc1f6596f85fbddfbedf79ba99e678d1023cf3bc9fa8cacb58c7fac02b1427f
bind97-utils-9.7.0-10.P2.el5_8.4.ppc.rpm
File outdated by:  RHSA-2013:1115
    MD5: d2e3ee033af9fea4d5dba90594853b5a
SHA-256: 3562661ff4ce3283ab4b8b5f84fab62421e75b26d4f15b8ac157c1b62c7d713b
 
s390x:
bind97-9.7.0-10.P2.el5_8.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 78a5625ce899349dadf74516cd5912ec
SHA-256: 80d885c570ec8a855a20bcc95e03c4d57055531ba4320431d569325fc42fb50f
bind97-chroot-9.7.0-10.P2.el5_8.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 27832cd432b4d41ce729b69437bf17e7
SHA-256: 3d7e660bb89b5f5d80e7bf5351e4e739c068421b3ebcc363dfd8aac1a47e15d5
bind97-debuginfo-9.7.0-10.P2.el5_8.4.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: a6b5309f772513e59d075688aa3e8908
SHA-256: 5c5c3a597fdc97014e919854689b9557ddd57d2b02e5b089de0b56cdb304f6c2
bind97-debuginfo-9.7.0-10.P2.el5_8.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 747224e603882e990cca8d9a556d8bdd
SHA-256: 9e75d91a0ac907d3f49ff27aeb2e6905dfcd8ad0f7aab140c0b9392d64fa9fc8
bind97-devel-9.7.0-10.P2.el5_8.4.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 960754abb6eeb512403112be24ce496a
SHA-256: 49cfb125354b8eaa28012e7141d4dfa6c4fb2020080bf90d735b1350a49a58fc
bind97-devel-9.7.0-10.P2.el5_8.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 010ad1191ce32ee4c114e09b583976b9
SHA-256: 0b1b3ca51751ba8449cfd0cfff9ea03b23c774c8162d816d81198d33ccb8d66f
bind97-libs-9.7.0-10.P2.el5_8.4.s390.rpm
File outdated by:  RHSA-2013:1115
    MD5: 014e7aa3afd45c89a6df9638aa25e6bd
SHA-256: ea5d2aae8327c98441cdfdf2d93f25d1b4002f338b740e4cefa4a57d140d3ab7
bind97-libs-9.7.0-10.P2.el5_8.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 45f2e0b434550346640cdcf49767852c
SHA-256: 0950488ef40fa1888555f002bd35207faf5672b602b106e2d99a9ed4f5c87a1a
bind97-utils-9.7.0-10.P2.el5_8.4.s390x.rpm
File outdated by:  RHSA-2013:1115
    MD5: 457f253056086eef973a62c97dbba5db
SHA-256: cdaa92781d31761a64608947be2adbd5c17898ff2669de46e5785d284ecca1ec
 
x86_64:
bind97-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: a4633bd095c1c378843ec522fea031ff
SHA-256: fc7421a9cb36666e59518ed6e0edfa9bb296b7ef02c6a6e8cf31592af91e5e71
bind97-chroot-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 42bbecb31887b4f7ba38ec3bbcbe61d1
SHA-256: ca68b6697f773e5eddbea10c36acb65e1b994582ac9848f7fbfe71aeb5d0c6b2
bind97-debuginfo-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 8a8417e362cfaa9a63c46e86d86d018b
SHA-256: 8a535c1303551a77593d7d4907fbc3d233b3f7546c28ce1659bbb8a2d018937a
bind97-debuginfo-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 74054e7709076c4fb5eb80045491b03d
SHA-256: 3914f0985a2b2773ced25fc41c9a47eef87a8a0bed09239e34e84d726b062059
bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: d3f7334a7e07ff0a2572e3661e6caee2
SHA-256: 3276f1538c7b0f904adb68a90d2f84f70d4bf80a1ed547e351b7ab5c62ff1329
bind97-devel-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: af7b1244aa383b7ef5aa5f57fe8b7114
SHA-256: 47433a4b833097c0055588c8bfd2950c19918369487a6e596d55fabb448b8e00
bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm
File outdated by:  RHSA-2013:1115
    MD5: 6efff08c3165347eff77db65adea2fd2
SHA-256: 68395660ba45e2dc360cad5d4fd2b2a336150054afbdb92ddd41ebe3816ae6a6
bind97-libs-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: dbd59a810f3932f1fcd974f1672ede5b
SHA-256: 8acdfa4d75fda34d50a8b6f3b652e2e9684fc9813eeab8e6afbcd2f0272a2cd2
bind97-utils-9.7.0-10.P2.el5_8.4.x86_64.rpm
File outdated by:  RHSA-2013:1115
    MD5: 4750be6070f001f68a5fdf669bd76b8b
SHA-256: d15cc2d8d5802895b90c12ab0883468fa66be0fc16ef880d9c49215eb5d4203c
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

864273 - CVE-2012-5166 bind: Specially crafted DNS data can cause a lockup in named


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/