Home page logo

fulldisclosure logo Full Disclosure mailing list archives

rPSA-2008-0231-1 bind bind-utils
From: rPath Update Announcements <announce-noreply () rpath com>
Date: Sat, 19 Jul 2008 10:31:24 -0400

rPath Security Advisory: 2008-0231-1
Published: 2008-07-19
    rPath Linux 2

Rating: Major
Exposure Level Classification:
    Remote System User Deterministic Weakness
Updated Versions:
    bind=conary.rpath.com () rpl:2/9.4.2_P1-2-0.1
    bind-utils=conary.rpath.com () rpl:2/9.4.2_P1-2-0.1

rPath Issue Tracking System:


    Previous versions of the bind package are vulnerable to a
    cache-poisoning attack due to a weakness in the DNS protocol.
    This update improves bind's resilience to this attack; however,
    it does not provide a definitive solution.
    Additionally, the bind package has been updated with root
    nameserver information, including the new IP address for 
    the "L" root nameserver.


Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • rPSA-2008-0231-1 bind bind-utils rPath Update Announcements (Jul 19)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]