[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 696-1] bind9 security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : bind9
Version        : 1:9.8.4.dfsg.P1-6+nmu2+deb7u13
CVE ID         : CVE-2016-8864

Tony Finch and Marco Davids reported an assertion failure in BIND, a
DNS server implementation, which causes the server process to
terminate.  This denial-of-service vulnerability is related to a
defect in the processing of responses with DNAME records from
authoritative servers and primarily affects recursive resolvers.

For Debian 7 "Wheezy", these problems have been fixed in version
1:9.8.4.dfsg.P1-6+nmu2+deb7u13.

We recommend that you upgrade your bind9 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=Wk6x
-----END PGP SIGNATURE-----
Reply to: