Internet Systems Consortium Security Advisory: BIND: Self Check Failing

This is a discussion on Internet Systems Consortium Security Advisory: BIND: Self Check Failing within the Bind Users forums, part of the DNS and Related Forums category; Internet Systems Consortium Security Advisory. BIND: Self Check Failing 18 November 2004 Versions affected: BIND 9.3.0 Severity: LOW ...


Go Back   Usenet Forums > DNS and Related Forums > Bind Users

Reload this Page Internet Systems Consortium Security Advisory: BIND: Self Check Failing

FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply

 

LinkBack Thread Tools Search this Thread Display Modes
  #1 (permalink)  
Old 01-26-2005
Mark Andrews
 
Posts: n/a
Default Internet Systems Consortium Security Advisory: BIND: Self Check Failing

Internet Systems Consortium Security Advisory.
BIND: Self Check Failing
18 November 2004

Versions affected:
BIND 9.3.0
Severity: LOW
Exploitable: Remotely
Type: denial of service
Description:

An incorrect assumption in the validator (authvalidated)
can result in a REQUIRE (internal consistancy) test failing
and named exiting.

Workaround:

Turn off dnssec validation (off by default) at
the options/view level.

dnssec-enable no;

Fix:

Upgrade to BIND 9.3.1
http://www.isc.org/sw/bind/

See also:
http://www.kb.cert.org/vuls/id/938617


Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT +1. The time now is 06:17 AM.

Contact Us - Usenet Forums - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.0.0