ISC BIND 9 resolver contains a remote packet denial of service vulnerability after logging an error in query.c.
According to ISC:
An as-yet unidentified network event caused BIND 9 resolvers to cache an invalid record, subsequent queries for which could crash the resolvers with an assertion failure. ISC is working on determining the ultimate cause by which a record with this particular inconsistency is cached.At this time we are making available a patch which makes named recover gracefully from the inconsistency, preventing the abnormal exit.
A remote, unauthenticated attacker can cause the BIND 9 resolver to crash creating a denial of service condition.
Internet Systems Consortium
Mandriva S. A.
Red Hat, Inc.
Thanks to Internet Systems Consortium for reporting this vulnerability.
This document was written by Michael Orlando.
|Date First Published:||2011-11-22|
|Date Last Updated:||2012-01-06 15:40 UTC|