Debian Security Advisory
DSA-3449-1 bind9 -- security update
- Date Reported:
- 19 Jan 2016
- Affected Packages:
- bind9
- Vulnerable:
- Yes
- Security database references:
- In Mitre's CVE dictionary: CVE-2015-8704.
- More information:
-
It was discovered that specific APL RR data could trigger an INSIST failure in apl_42.c and cause the BIND DNS server to exit, leading to a denial-of-service.
For the oldstable distribution (wheezy), this problem has been fixed in version 1:9.8.4.dfsg.P1-6+nmu2+deb7u9.
For the stable distribution (jessie), this problem has been fixed in version 1:9.9.5.dfsg-9+deb8u5.
We recommend that you upgrade your bind9 packages.