ISC announced the release of BIND 9.4.1 today. The release is a security update to BIND 9.4.0 which affects the following bugs


2172. [bug] query_addsoa() was being called with a non zone db.

This bug is also know as CVE-2007-2241. A sequence of queries can cause a recursive name server to exit resulting in a denial of service. The bug can be avoided by disabling workarounds in affected (pre-9.4.1) systems. ISC recommends upgrading to BIND 9.4.1.

If you have access to ISC’s bug tracking system, you can look this up as [RT #16834].

Interested in learning more about network and system administration?
Get Slaptijack updates for free.
Related Posts (Automatically Generated)
Author: slap · Date: Apr 30th, 2007 · Category: Security Updates