Slackware Advisory SSA:2007-026-01 Bind Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2007-026-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2007-026-01

Insight

New bind packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, and 11.0 to fix denial of service security issues. Versions of bind-9.2.x older than bind-9.2.8, and versions of bind-9.3.x older than 9.3.4 can be made to crash with malformed local or remote data. More details about the issues may be found in the Common Vulnerabilities and Exposures (CVE) database: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0493 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0494

Severity

Classification

CVE CVE-2007-0493, CVE-2007-0494

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Slackware Advisory SSA:2006-272-01 openssl
Slackware Advisory SSA:2004-299-01 apache, mod_ssl, php
Slackware Advisory SSA:2004-049-01 Kernel security update
Slackware Advisory SSA:2004-296-01 gaim
Slackware Advisory SSA:2003-259-01 OpenSSH Security Advisory

Slackware Advisory SSA:2007-026-01 bind

Take action and discover your vulnerabilities