rPath Information for VU#915404

BIND vulnerable to an assertion failure when querying for SIG records

Status

Affected

Vendor Statement

rPath Security Advisory: 2006-0166-1
Published: 2006-09-08
Products: rPath Linux 1
Rating: Major
Exposure Level Classification:
   Remote Deterministic Denial of Service
Updated Versions:
   bind=/conary.rpath.com@rpl:devel//1/9.3.2_P1-0.1-1
   bind-utils=/conary.rpath.com@rpl:devel//1/9.3.2_P1-0.1-1

References:
   http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4095
   http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4096
   https://issues.rpath.com/browse/RPL-626

Description:
   Previous versions of the bind package are vulnerable to
   to multiple remote denial of service attacks.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.