-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Security release

Addresses CVE-2014-3859 - here are the packets for CentOS

Description:

A query specially crafted to exploit a defect in EDNS option processing can cause named to terminate with an assertion failure.

Impact:

Both authoritative and recursive servers are vulnerable to this defect. Exploitation of this condition can cause a denial of service in nameservers running affected versions of BIND 9.10. Access Control Lists do not provide protection.

The bug which causes this condition is in libdns; consequently in addition to the named server process other applications (for example: dig and delv) built using the libdns library from the affected source distributions can also be forced to crash with assertion failures triggered in the same fashion.

The files are available in the file repository 9.10.0-P2, 9.9.5-P1 and 9.8.7-P1.

Import GPG Key

rpm --import http://bkraft.fr/files/RPM%20stuff/RPM-GPG-KEY-benjaminkraft

File listing for 9.10.0-P2

http://bkraft.fr/files/RPM%20stuff/bind-9.10.0-P2.el6.x86_64
[  81]  noarch
	[8.0M]  bind-9.10.0-2.el6.src.rpm
	[ 71K]  bind-license-9.10.0-2.el6.noarch.rpm
[4.0K]  x86_64
	[2.6M]  bind-9.10.0-2.el6.x86_64.rpm
	[ 70K]  bind-chroot-9.10.0-2.el6.x86_64.rpm
	[4.8M]  bind-debuginfo-9.10.0-2.el6.x86_64.rpm
	[439K]  bind-devel-9.10.0-2.el6.x86_64.rpm
	[1.1M]  bind-libs-9.10.0-2.el6.x86_64.rpm
	[ 69K]  bind-lite-devel-9.10.0-2.el6.x86_64.rpm
	[ 86K]  bind-pkcs11-9.10.0-2.el6.x86_64.rpm
	[337K]  bind-sdb-9.10.0-2.el6.x86_64.rpm
	[211K]  bind-utils-9.10.0-2.el6.x86_64.rpm

Download everything

for i in noarch/bind-license-9.10.0-2.el6.noarch.rpm x86_64/bind-9.10.0-2.el6.x86_64.rpm x86_64/bind-chroot-9.10.0-2.el6.x86_64.rpm x86_64/bind-debuginfo-9.10.0-2.el6.x86_64.rpm x86_64/bind-devel-9.10.0-2.el6.x86_64.rpm x86_64/bind-libs-9.10.0-2.el6.x86_64.rpm x86_64/bind-libs-lite-9.10.0-2.el6.x86_64.rpm x86_64/bind-lite-devel-9.10.0-2.el6.x86_64.rpm x86_64/bind-pkcs11-9.10.0-2.el6.x86_64.rpm x86_64/bind-sdb-9.10.0-2.el6.x86_64.rpm x86_64/bind-utils-9.10.0-2.el6.x86_64.rpm;
do
	wget http://bkraft.fr/files/RPM%20stuff/bind-9.10.0-P2.el6.x86_64/$i
done

File listing for 9.9.5-P1

http://bkraft.fr/files/RPM%20stuff/bind-9.9.5-P1.el6.x86_64
[  79]  noarch
	[7.5M]  bind-9.9.5-1.el6.src.rpm
	[ 71K]  bind-license-9.9.5-1.el6.noarch.rpm
[4.0K]  x86_64
	[2.5M]  bind-9.9.5-1.el6.x86_64.rpm
	[ 70K]  bind-chroot-9.9.5-1.el6.x86_64.rpm
	[5.6M]  bind-debuginfo-9.9.5-1.el6.x86_64.rpm
	[384K]  bind-devel-9.9.5-1.el6.x86_64.rpm
	[961K]  bind-libs-9.9.5-1.el6.x86_64.rpm
	[677K]  bind-libs-lite-9.9.5-1.el6.x86_64.rpm
	[294K]  bind-lite-devel-9.9.5-1.el6.x86_64.rpm
	[ 83K]  bind-pkcs11-9.9.5-1.el6.x86_64.rpm
	[322K]  bind-sdb-9.9.5-1.el6.x86_64.rpm
	[186K]  bind-utils-9.9.5-1.el6.x86_64.rpm

Download everything

for i in noarch/bind-license-9.9.5-1.el6.noarch.rpm x86_64/bind-9.9.5-1.el6.x86_64.rpm x86_64/bind-chroot-9.9.5-1.el6.x86_64.rpm x86_64/bind-debuginfo-9.9.5-1.el6.x86_64.rpm x86_64/bind-devel-9.9.5-1.el6.x86_64.rpm x86_64/bind-libs-9.9.5-1.el6.x86_64.rpm x86_64/bind-libs-lite-9.9.5-1.el6.x86_64.rpm x86_64/bind-lite-devel-9.9.5-1.el6.x86_64.rpm x86_64/bind-pkcs11-9.9.5-1.el6.x86_64.rpm x86_64/bind-sdb-9.9.5-1.el6.x86_64.rpm x86_64/bind-utils-9.9.5-1.el6.x86_64.rpm;
do
	wget http://bkraft.fr/files/RPM%20stuff/bind-9.9.5-P1.el6.x86_64/$i
done

File listing for 9.8.7-P1

http://bkraft.fr/files/RPM%20stuff/bind-9.8.7-P1.el6.x86_64
[  79]  noarch
	[7.2M]  bind-9.8.7-1.el6.src.rpm
	[ 70K]  bind-license-9.8.7-1.el6.noarch.rpm
[4.0K]  x86_64
	[551K]  bind-9.8.7-1.el6.x86_64.rpm
	[ 69K]  bind-chroot-9.8.7-1.el6.x86_64.rpm
	[2.2M]  bind-debuginfo-9.8.7-1.el6.x86_64.rpm
	[376K]  bind-devel-9.8.7-1.el6.x86_64.rpm
	[1.7M]  bind-libs-9.8.7-1.el6.x86_64.rpm
	[ 66K]  bind-libs-lite-9.8.7-1.el6.x86_64.rpm
	[288K]  bind-lite-devel-9.8.7-1.el6.x86_64.rpm
	[ 82K]  bind-pkcs11-9.8.7-1.el6.x86_64.rpm
	[317K]  bind-sdb-9.8.7-1.el6.x86_64.rpm
	[185K]  bind-utils-9.8.7-1.el6.x86_64.rpm

Download everything

for i in noarch/bind-license-9.8.7-1.el6.noarch.rpm x86_64/bind-9.8.7-1.el6.x86_64.rpm x86_64/bind-chroot-9.8.7-1.el6.x86_64.rpm x86_64/bind-debuginfo-9.8.7-1.el6.x86_64.rpm x86_64/bind-devel-9.8.7-1.el6.x86_64.rpm x86_64/bind-libs-9.8.7-1.el6.x86_64.rpm x86_64/bind-libs-lite-9.8.7-1.el6.x86_64.rpm x86_64/bind-lite-devel-9.8.7-1.el6.x86_64.rpm x86_64/bind-pkcs11-9.8.7-1.el6.x86_64.rpm x86_64/bind-sdb-9.8.7-1.el6.x86_64.rpm x86_64/bind-utils-9.8.7-1.el6.x86_64.rpm;
do
	wget http://bkraft.fr/files/RPM%20stuff/bind-9.8.7-P1.el6.x86_64/$i
done

-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
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=aKxL
-----END PGP SIGNATURE-----

Hint: To validate signature, please view page source and copy html code between BEGIN PGP Signed message and END PGP Signature anchors.

Created the 2014-06-13

Share this


Replacement notice

×

This package has been replaced by a new version of the software.

refer to Bind 9.10.1, Bind 9.9.6 and Bind 9.8.8 for CentOS 6

Resources

10 last articles

blog comments powered by Disqus