New version of bind released
Posted by LinuxSecurity.com Team   
Debian The version bind that was distributed in Debian GNU/Linux 2.1 has a vulnerability in the processing of NXT records that can be used by an attacked in a Debian of Service attack or theoretically be exploited to gain access to the server.
-----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory                             security@debian.org
http://www.debian.org/security/      
                   Wichert Akkerman
November 17, 1999
- ------------------------------------------------------------------------


The version bind that was distributed in Debian GNU/Linux 2.1 has
a vulnerability in the processing of NXT records that can be used
by an attacked in a Debian of Service attack or theoretically be
exploited to gain access to the server.

This has been fixed in version 8.2.5p5-0slink1, and we
recommend that you upgrade your bind package immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.1 alias slink
- --------------------------------

  This version of Debian was released only for Intel, the Motorola
  680x0, the alpha and the Sun sparc architecture.


  Source archives:
    http://security.debian.org/dists/stable/updates/source/bind_8.2
.2p5-0slink1.diff.gz
      MD5 checksum: 7e869545b7fab796e264f2ac3b726030
    http://security.debian.org/dists/stable/updates/source/bind_8.2.2p5
-0slink1.dsc
      MD5 checksum: 8dd6f2726596d6d37088309e7a42fa7c
    http://security.debian.org/dists/stable/updates/source/bind_8.2.2p5.orig.
tar.gz
      MD5 checksum: e910c207e3a419b1fdba646c28ee3102

  Alpha architecture:
    http://security.debian.org/dists/stable/updates/binary-
alpha/bind_8.2.2p5-0slink1_alpha.deb
      MD5 checksum: e7eb3c2b03963338bafc3c13bdec776f
    http://security.debian.org/dists/stable/updates/binary-
alpha/dnsutils_8.2.2p5-0slink1_alpha.deb
      MD5 checksum: e559e74e9b2ba8565974d5c21611a474

  Intel ia32 architecture:
    http://security.debian.org/dists/stable/updates/binary-
i386/bind_8.2.2p5-0slink1_i386.deb
      MD5 checksum: f25811f6d69034ea64c65382e6c9717d
    http://security.debian.org/dists/stable/updates/binary-
i386/dnsutils_8.2.2p5-0slink1_i386.deb
      MD5 checksum: ce8a20f23ec3246cab484776652a18a4

  Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/binary-
m68k/bind_8.2.2p5-0slink1_m68k.deb
      MD5 checksum: f7e4c91d75bbd03325cfa666a3da35d7
    http://security.debian.org/dists/stable/updates/binary-
m68k/dnsutils_8.2.2p5-0slink1_m68k.deb
      MD5 checksum: 388f6dbae6ce8e897dfd636e4b3f15c6

  Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/binary-
sparc/bind_8.2.2p5-0slink1_sparc.deb
      MD5 checksum: adf299fcdc50c8db77b5b3f462633b0f
    http://security.debian.org/dists/stable/updates/binary-
sparc/dnsutils_8.2.2p5-0slink1_sparc.deb
      MD5 checksum: 89d1729caf15d6b51e2e5f8b6fccf5c4


  These files will be moved into
  ftp://ftp.debian.org/debian/dists/stable/*/binary-$arch/ soon.

For not yet released architectures please refer to the appropriate
directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .

- -- 
- ----------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable 
updates
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBODHox6jZR/ntlUftAQGObQMArSjE2L3p9nQBbgBplHhrBytufFlwtlY6
HhFdjxnCmqMpD1sxpLr//fuRL84/IhLorLbKw/Yfz7FP9q5gF5cAgtzLrmbGuZmd
tVpkEo+mA6LZKKccPIRCo6+wutCPx5/q
=ep8N
-----END PGP SIGNATURE-----