bind 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1260044858
업데이트 : 2009.12.06
상세내용
- 9.4.3-4 (9.4.3-P4) update
- fixed CVE-2009-4022
. CVE-2009-4022:
Unspecified vulnerability in ISC BIND 9.4 before 9.4.3-P4, 9.5 before
9.5.2-P1, 9.6 before 9.6.1-P2, 9.7 beta before 9.7.0b3, and 9.0.x through
9.3.x with DNSSEC validation enabled and checking disabled (CD), allows
remote attackers to conduct DNS cache poisoning attacks via additional
sections in a response sent for resolution of a recursive client query,
which is not properly handled when the response is processed "at the
same time as requesting DNSSEC records (DO)."
Autoupdates 지원 : 일부 지원
pkgsysupdate && pkgadd -F "bind*"
update 패키지
RPMS :
. bind-9.4.3-4.i686.rpm
. bind-utils-9.4.3-4.i686.rpm
. bind-devel-9.4.3-4.i686.rpm
SRPMS :
. bind-9.4.3-4.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022
http://www.kb.cert.org/vuls/id/418861
https://www.isc.org/advisories/CVS2009-4022
|