Security Information / 1998 / Security Information -- bind

Debian Security Advisory

bind -- buffer overflow causing potential remote root exploits, denial of service

Date Reported:

08 Apr 1998

Affected Packages:

bind 4.9 prior to 4.9.7-1 and bind 8 prior to 8.1.2-1

Vulnerable:

Yes

Security database references:

No other external database security references currently available.

More information:

Older versions of bind are vulnerable to a buffer overrun during an inverse query request, potentially allowing system access as root. Additional vulnerabilities permit denial of service attacks on the bind service.

See CERT advisory CA-98.05.

Fixed in:

Intel - (in release 1.3) 4.9.7-2
All - (in release 2.0) 1:8.1.2-1