attack.
Background
==========
ISC BIND is the Internet Systems Consortium implementation of the
Domain Name System (DNS) protocol.
Affected packages
=================
Several cache poisoning vulnerabilities have been found in BIND.
Background
==========
ISC BIND is the Internet Systems Consortium implementation of the
Domain Name System (DNS) protocol.
Affected packages
=================
cache poisoning on recursive resolvers.
Background
==========
ISC BIND is the Internet Systems Consortium implementation of the
Domain Name System (DNS) protocol.
Affected packages
=================
spoofed records authenticated using DNSSEC.
Background
==========
ISC BIND is the Internet Systems Consortium implementation of the
Domain Name System (DNS) protocol.
Affected packages
=================
Legal Disclaimer::
Internet Systems Consortium (ISC) is providing this notice on an "AS IS"
basis. No warranty or guarantee of any kind is expressed in this notice and
none should be implied. ISC expressly excludes and disclaims any warranties
regarding this notice or materials referred to in this notice, including,
without limitation, any implied warranty of merchantability, fitness for a
particular purpose, absence of hidden defects, or of non-infringement. Your
Multi Network Firewall 2.0
_______________________________________________________________________
Problem Description:
Internet Systems Consortium (ISC) BIND 9.6.0 and earlier does not
properly check the return value from the OpenSSL EVP_VerifyFinal
function, which allows remote attackers to bypass validation of
the certificate chain via a malformed SSL/TLS signature, a similar
vulnerability to CVE-2008-5077 and CVE-2009-0025.
https://www.isc.org/security-vulnerability-disclosure-policy
Legal Disclaimer::
Internet Systems Consortium (ISC) is providing this notice on an "AS IS"
basis. No warranty or guarantee of any kind is expressed in this notice and
none should be implied. ISC expressly excludes and disclaims any warranties
regarding this notice or materials referred to in this notice, including,
without limitation, any implied warranty of merchantability, fitness for a
particular purpose, absence of hidden defects, or of non-infringement. Your
daemon.
Background
==========
ISC BIND is the Internet Systems Consortium implementation of the
Domain Name System (DNS) protocol.
Affected packages
=================
trust and reassure the bind9 users that ISC digs security...
(another mistake in the ISC announcement is right at the top of the
page, where it reads "In June of 2007, a problem regarding Transaction
ID generation in BIND 9.4.1 (and prior) was reported to Internet
Systems Consortium (ISC) engineers." but according to Trusteer, they
reported it on May 29th:
http://www.trusteer.com/docs/bind9dns.html#chapter_4)
