LinuxSecurity.com
Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Welcome!
Sign up!
EnGarde Community
Login
Polls
What is the most important Linux security technology?
 
Advisories
Community
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
SELinux
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Securitydistro
Latest Newsletters
Linux Advisory Watch: August 15th, 2014
Linux Advisory Watch: August 8th, 2014
Subscribe
LinuxSecurity Newsletters
E-mail:
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

  
Debian: 'bind' DoS Print E-mail
User Rating:      How can I rate this item?
Posted by LinuxSecurity.com Team   
Debian The version of BIND shipped with Debian GNU/Linux 2.2 is vulnerable toa remote denial of service attack

- ----------------------------------------------------------------------------
Debian Security Advisory                                 security@debian.org 
http://www.debian.org/security/                            Daniel Jacobowitz
November 12, 2000
- ----------------------------------------------------------------------------

Package: bind
Vulnerability: remote Denial of Service
Debian-specific: no
Vulnerable: yes

The version of BIND shipped with Debian GNU/Linux 2.2 is vulnerable to
a remote denial of service attack, which can cause the nameserver to crash
after accessing an uninitialized pointer.  This problem is fixed in the current
maintenance release of BIND, 8.2.2P7, and in the Debian package version
8.2.2p7-1 for both stable and unstable releases.

We recommend that all users of bind upgrade immediately.

Debian GNU/Linux 2.1 alias slink
- --------------------------------

  Slink is no longer being supported by the Debian Security Team.  We highly
  recommend an upgrade to the current stable release.

Debian GNU/Linux 2.2 (stable) alias potato
- ------------------------------------------

  Fixes are currently available for the Alpha, ARM, Intel ia32, Motorola 680x0,
  PowerPC and Sun SPARC architectures, and will be included in 2.2r2.

  Source archives:
    
http://security.debian.org/dists/potato/updates/main/source/bind_8.2.2p7-1.diff.gz
      MD5 checksum: 9cde4283e855aa1bf467839af6eb32b5
    
http://security.debian.org/dists/potato/updates/main/source/bind_8.2.2p7-1.dsc
      MD5 checksum: 7b082b218f267938627bf1657502deb0
    
http://security.debian.org/dists/potato/updates/main/source/bind_8.2.2p7.orig.tar.gz
      MD5 checksum: a37996a13eca6667392d575611d48d10

  Alpha architecture:
    
http://security.debian.org/dists/potato/updates/main/binary-alpha/bind-dev_8.2.2p7-1_alpha.deb
      MD5 checksum: 2315ecbe3d12e3b63990d3c3865757c7
    
http://security.debian.org/dists/potato/updates/main/binary-alpha/bind_8.2.2p7-1_alpha.deb
      MD5 checksum: 714123acb9343215f1db7069a852097b
    
http://security.debian.org/dists/potato/updates/main/binary-alpha/dnsutils_8.2.2p7-1_alpha.deb
      MD5 checksum: 52674605ace1f92dace748d2f395a25e

  ARM architecture:
    
http://security.debian.org/dists/potato/updates/main/binary-arm/bind-dev_8.2.2p7-1_arm.deb
      MD5 checksum: ee34a99274fb5c39d7827022f97f90cd
    
http://security.debian.org/dists/potato/updates/main/binary-arm/bind_8.2.2p7-1_arm.deb
      MD5 checksum: 479bc6ee1ec7420dd66492ee86a0b4f2
    
http://security.debian.org/dists/potato/updates/main/binary-arm/dnsutils_8.2.2p7-1_arm.deb
      MD5 checksum: 9f2993e930fe124b7d781f7fcf7dd9f5

  Intel ia32 architecture:
    
http://security.debian.org/dists/potato/updates/main/binary-i386/bind-dev_8.2.2p7-1_i386.deb
      MD5 checksum: 513489234a54cf0ec315614ad4d3eb6c
    
http://security.debian.org/dists/potato/updates/main/binary-i386/bind_8.2.2p7-1_i386.deb
      MD5 checksum: e43bcbf9ea61557df87a96d3554d4a51
    
http://security.debian.org/dists/potato/updates/main/binary-i386/dnsutils_8.2.2p7-1_i386.deb
      MD5 checksum: bda3b5b518413f158b7e22c86bcd256e

  Motorola 680x0 architecture:
    
http://security.debian.org/dists/potato/updates/main/binary-m68k/bind-dev_8.2.2p7-1_m68k.deb
      MD5 checksum: fa8e79eb6df63bdb61571e0de4fd104d
    
http://security.debian.org/dists/potato/updates/main/binary-m68k/bind_8.2.2p7-1_m68k.deb
      MD5 checksum: a20d3db55060efffe2751d06d73d2e3b
    
http://security.debian.org/dists/potato/updates/main/binary-m68k/dnsutils_8.2.2p7-1_m68k.deb
      MD5 checksum: e882f568805162ded8d96d88a69f6bdb

  PowerPC architecture:
 
http://security.debian.org/dists/potato/updates/main/binary-powerpc/bind-dev_8.2.2p7-1_powerpc.deb
      MD5 checksum: 7224113410d6c8d35facbb8a017c612b
    
http://security.debian.org/dists/potato/updates/main/binary-powerpc/bind_8.2.2p7-1_powerpc.deb
      MD5 checksum: 8cad0e6aedcbbd73d6341dcc7dda23f9
    
http://security.debian.org/dists/potato/updates/main/binary-powerpc/dnsutils_8.2.2p7-1_powerpc.deb
      MD5 checksum: c25d9943a4a508eb80e6e9d1c564eb29

  Sun Sparc architecture:
    
http://security.debian.org/dists/potato/updates/main/binary-sparc/bind-dev_8.2.2p7-1_sparc.deb
      MD5 checksum: 022fe932c1b25fb6d59d5031de8a04ba
    
http://security.debian.org/dists/potato/updates/main/binary-sparc/bind_8.2.2p7-1_sparc.deb
      MD5 checksum: b7c02ca550277dce564375ff28ef0f2a
    
http://security.debian.org/dists/potato/updates/main/binary-sparc/dnsutils_8.2.2p7-1_sparc.deb
      MD5 checksum: c98c594c4846ff7a639a020e42ae7462

Debian GNU/Linux Unstable alias woody
- -------------------------------------

  This version of Debian is not yet released.

  Fixes will be available for Alpha, ARM, Intel ia32, Motorola 680x0,
  PowerPC, and SPARC in the Debian archive tomorrow.  The fixed packages
  listed above may also be installed on unstable systems.

- ----------------------------------------------------------------------------
For apt-get: deb  http://security.debian.org/ stable/updates main
Mailing list: debian-security-announce@lists.debian.org


 
< Prev   Next >
    
Partner

 

Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Attackers Can ‘Steal’ Bandwidth From BitTorrent Seeders, Research Finds
Linux Kernel Development Gets Two-Factor Authentication
Hacking cars and traffic lights at Def Con
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2014 Guardian Digital, Inc. All rights reserved.