Launchpad has imported 10 comments from the remote bug at https://bugzilla.redhat.com/show_bug.cgi?id=856754.
If you reply to an imported comment from within Launchpad, your comment will be sent to the remote bug automatically. Read more about Launchpad's inter-bugtracker facilities at https://help.launchpad.net/InterBugTracking. ------------------------------------------------------------------------ On 2012-09-12T18:11:16+00:00 Vincent wrote: A flaw in ISC BIND was reported [1] where a nameserver could be caused to exit with a REQUIRE exception if it received a specially crafted resource record with RDATA that exceeded 65535 bytes and then received a subsequent query for that record. This can be exploited remotely against recursive servers by getting them to query for records provided by an authoritative server. It also affects authoritative servers if a zone containing this kind of resource record is loaded from a file on disk or via a zone transfer. [1] https://kb.isc.org/article/AA-00778/74 Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/0 ------------------------------------------------------------------------ On 2012-09-12T18:15:12+00:00 Vincent wrote: Created attachment 612201 diff of bind-9.6-ESV-R7-P2 to P3 --- 9.6-ESV-R7-P3 released --- 3364. [security] Named could die on specially crafted record. [RT #30416] 3358 [bug] Fix declaration of fatal in bin/named/server.c and bin/nsupdate/main.c. [RT #30522] (I didn't pull out the irrelevant changes as I suspect they may be used by the pertinent changes) Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/1 ------------------------------------------------------------------------ On 2012-09-12T18:16:19+00:00 Vincent wrote: Created bind tracking bugs for this issue Affects: fedora-all [bug 856756] Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/2 ------------------------------------------------------------------------ On 2012-09-14T09:32:37+00:00 errata-xmlrpc wrote: This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2012:1268 https://rhn.redhat.com/errata/RHSA-2012-1268.html Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/6 ------------------------------------------------------------------------ On 2012-09-14T09:32:45+00:00 errata-xmlrpc wrote: This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2012:1267 https://rhn.redhat.com/errata/RHSA-2012-1267.html Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/7 ------------------------------------------------------------------------ On 2012-09-14T09:33:29+00:00 errata-xmlrpc wrote: This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2012:1266 https://rhn.redhat.com/errata/RHSA-2012-1266.html Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/8 ------------------------------------------------------------------------ On 2012-09-23T03:28:37+00:00 Fedora wrote: bind-9.9.1-9.P3.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report. Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/9 ------------------------------------------------------------------------ On 2012-09-23T04:55:46+00:00 Fedora wrote: bind-9.9.1-10.P3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report. Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/10 ------------------------------------------------------------------------ On 2012-09-27T04:32:50+00:00 Fedora wrote: bind-9.8.3-4.P3.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report. Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/11 ------------------------------------------------------------------------ On 2012-10-12T19:43:43+00:00 errata-xmlrpc wrote: This issue has been addressed in following products: Red Hat Enterprise Linux 4 Extended Lifecycle Support Via RHSA-2012:1365 https://rhn.redhat.com/errata/RHSA-2012-1365.html Reply at: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/comments/12 ** Changed in: bind9 (Fedora) Status: Unknown => Fix Released ** Changed in: bind9 (Fedora) Importance: Unknown => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1050211 Title: (CVE-2012-4244) bind9: specially crafted resource record causes named to exit To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1050211/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
