openSUSE: 2015:1326-1: important: bind
Description
bind was updated to fix one security issue. This security issue was fixed: - CVE-2015-5477: Remote DoS via TKEY queries (boo#939567) Exposure to this issue can not be prevented by either ACLs or configuration options limiting or denying service because the exploitable code occurs early in the packet handling.
Patch
Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Evergreen 11.4: zypper in -t patch 2015-527=1 To bring your system up-to-date, use "zypper patch".
Package List
- openSUSE Evergreen 11.4 (i586 x86_64): bind-9.9.4P2-66.1 bind-chrootenv-9.9.4P2-66.1 bind-debuginfo-9.9.4P2-66.1 bind-debugsource-9.9.4P2-66.1 bind-devel-9.9.4P2-66.1 bind-libs-9.9.4P2-66.1 bind-libs-debuginfo-9.9.4P2-66.1 bind-lwresd-9.9.4P2-66.1 bind-lwresd-debuginfo-9.9.4P2-66.1 bind-utils-9.9.4P2-66.1 bind-utils-debuginfo-9.9.4P2-66.1 - openSUSE Evergreen 11.4 (x86_64): bind-libs-32bit-9.9.4P2-66.1 bind-libs-debuginfo-32bit-9.9.4P2-66.1 - openSUSE Evergreen 11.4 (noarch): bind-doc-9.9.4P2-66.1 - openSUSE Evergreen 11.4 (ia64): bind-libs-debuginfo-x86-9.9.4P2-66.1 bind-libs-x86-9.9.4P2-66.1
References
https://www.suse.com/security/cve/CVE-2015-1349.html https://www.suse.com/security/cve/CVE-2015-4620.html https://www.suse.com/security/cve/CVE-2015-5477.html https://bugzilla.suse.com/918330 https://bugzilla.suse.com/936476 https://bugzilla.suse.com/939567