ISC Announces Security Release BIND 9.4.1
ISC announced the release of BIND 9.4.1 today. The release is a security update to BIND 9.4.0 which affects the following bugs
2172. [bug] query_addsoa() was being called with a non zone db.
This bug is also know as CVE-2007-2241. A sequence of queries can cause a recursive name server to exit resulting in a denial of service. The bug can be avoided by disabling workarounds in affected (pre-9.4.1) systems. ISC recommends upgrading to BIND 9.4.1.
If you have access to ISC’s bug tracking system, you can look this up as [RT #16834].
Interested in learning more about network and
system administration?
Get Slaptijack updates for free.
Get Slaptijack updates for free.

Get Slaptijack updates delivered to your Inbox or RSS Reader for free!
April 30th, 2007 at 10:31 pm
UPDATE: Additional information regarding the nature of the bug affect 9.4.0.