Caldera Information for VU#715973

ISC BIND 8.2.2-P6 vulnerable to DoS via compressed zone transfer, aka the "zxfr bug"

Status

Affected

Vendor Statement

   The Advisory [is] available [at]:

    http://www.calderasystems.com/support/security/advisories/CSSA-2000-040.0.txt

    Updated packages will be available from

    OpenLinux Desktop 2.3
     
ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current
      9d8429f25c5fb3bebe2d66b1f9321e61  RPMS/bind-8.2.2p7-1.i386.rpm
      0e958eb01f40826f000d779dbe6b8cb3  RPMS/bind-doc-8.2.2p7-1.i386.rpm
      866ff74c77e9c04a6abcddcc11dbe17b  RPMS/bind-utils-8.2.2p7-1.i386.rpm
      6a545924805effbef01de74e34ba005e  SRPMS/bind-8.2.2p7-1.src.rpm

    OpenLinux eServer 2.3
     
ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current
      379c4328604b4491a8f3d0de44e42347  RPMS/bind-8.2.2p7-1.i386.rpm
      b428b824c8b67f2d8d4bf53738a3e7e0  RPMS/bind-doc-8.2.2p7-1.i386.rpm
      28311d630281976a870d38abe91f07fb  RPMS/bind-utils-8.2.2p7-1.i386.rpm
      6a545924805effbef01de74e34ba005e  SRPMS/bind-8.2.2p7-1.src.rpm

    OpenLinux eDesktop 2.4
     
ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current
      c37b6673cc9539e592013ac114846940  RPMS/bind-8.2.2p7-1.i386.rpm
      bbe0d7e317fde0d47cba1384f6d4b635  RPMS/bind-doc-8.2.2p7-1.i386.rpm
      5c28dd5641a4550c03e9859d945a806e  RPMS/bind-utils-8.2.2p7-1.i386.rpm
      6a545924805effbef01de74e34ba005e  SRPMS/bind-8.2.2p7-1.src.rpm

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.