Open Source News » Slashdot: IT » New DoS Vulnerability In All Versions of BIND 9

Feeds

34694 items (30181 unread) in 5 feeds

OpenSource (5762 unread)

• SourceForge.net: Front page news (802 unread)
• Slashdot: IT (4960 unread)

Security (11351 unread)

• Digg / Security (11351 unread)

Linux (13068 unread)

• digg / Linux/Unix (11408 unread)
• Slashdot: Linux (1660 unread)

Slashdot: IT

• 

  New DoS Vulnerability In All Versions of BIND 9

  Posted: July 29th, 2009, 4:02am CEST by kdawson

  Tags:  security  

  Icemaann writes "ISC is reporting that a new, remotely exploitable vulnerability has been found in all versions of BIND 9. A specially crafted dynamic update packet will make BIND die with an assertion error. There is an exploit in the wild and there are no access control workarounds. RedHat claims that the exploit does not affect BIND servers that do not allow dynamic updates, but the ISC post refutes that. This is a high-priority vulnerability and DNS operators will want to upgrade BIND to the latest patch level."

  Read more of this story at Slashdot.