bind 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1231765458
업데이트 : 2009.01.12
상세내용
- 9.4.3-1 (9.4.3-P1) update
- fixed CVE-2009-0025
CVE-2009-0025:
A flaw was discovered in the way BIND checked the return value of the
OpenSSL DSA_do_verify function. On systems using DNSSEC, a malicious zone
could present a malformed DSA certificate and bypass proper certificate
validation, allowing spoofing attacks.
Autoupdates 지원 : 일부 지원
pkgadd -F "bind*"
update 패키지
RPMS :
. bind-9.4.3-1.i686.rpm
. bind-utils-9.4.3-1.i686.rpm
. bind-devel-9.4.3-1.i686.rpm
SRPMS :
. bind-9.4.3-1.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0025
|