Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » RHSA-2014:1985-01

Overview

Id RHSA-2014:1985-01
Name Red Hat 2014:1985-01 RHSA Important: bind97 security update for RHEL 5 x86_64
Vendor Name red_hat
Product None
Content Type Critical Critical
Language(s)
Operating System(s) Linux 
Released On 12 Dec 2014 12:00:00

RHSA-2014:1985-01

Red Hat 2014:1985-01 RHSA Important: bind97 security update for RHEL 5 x86_64

Vendor Name

red_hat

Product

None

Released On

12 Dec 2014 12:00:00

Url

https://rhn.redhat.com/errata/RHSA-2014-1985.html

Description

LSAC(v2)
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. A denial of service flaw was found in the way BIND followed DNS delegations. A remote attacker could use a specially crafted zone containing a large number of referrals which, when looked up and processed, would cause named to use excessive amounts of memory or crash. (CVE-2014-8500) All bind97 users are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. After installing the update, the BIND daemon (named) will be restarted automatically.

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches


Last Updated: 27 May 2016 11:20:28