pkg/44997: Large RRSIG RRsets and Negative Caching can crash named

To: pkg-manager%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,pkgsrc-bugs%netbsd.org@localhost
Subject: pkg/44997: Large RRSIG RRsets and Negative Caching can crash named
From: sm%resistor.net@localhost
Date: Fri, 27 May 2011 07:55:00 +0000 (UTC)

>Number:         44997
>Category:       pkg
>Synopsis:       Large RRSIG RRsets and Negative Caching can crash named
>Confidential:   no
>Severity:       critical
>Priority:       high
>Responsible:    pkg-manager
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Fri May 27 07:55:00 +0000 2011
>Originator:     SM
>Release:        5.1
>Organization:
>Environment:
>Description:
A BIND 9 DNS server set up to be a caching resolver is vulnerable to a user 
querying a domain with very large resource record sets (RRSets) when trying to 
negatively cache a response. This can cause the BIND 9 DNS server (named 
process) to crash.
CVE: 
CVE-2011-1910
Posting date: 
26 May 2011
Program Impacted: 
BIND
Versions affected: 
9.4-ESV-R3 and later, 9.6-ESV-R2 and later, 9.6.3, 9.7.1 and later, 9.8.0 and 
later
Severity: 
High
Exploitable: 
remotely


>How-To-Repeat:
host -t TXT _adsp._domainkey.federalreserve.gov does not trigger the bug at 
this time.
>Fix:
--- Makefile.orig       2011-05-26 15:11:45.000000000 -0700
+++ Makefile    2011-05-27 00:34:53.000000000 -0700
@@ -1,7 +1,7 @@
 # $NetBSD: Makefile,v 1.2 2011/05/06 00:34:32 taca Exp $
 
 DISTNAME=      bind-${BIND_VERSION}
-PKGNAME=       ${DISTNAME:S/-P/pl/}
+PKGNAME=       ${DISTNAME:S/-P/p1/}
 CATEGORIES=    net
 MASTER_SITES=  ftp://ftp.isc.org/isc/bind9/${BIND_VERSION}/ \
                
http://ftp.belnet.be/pub/mirror/ftp.isc.org/isc/bind9/${BIND_VERSION}/
@@ -16,7 +16,7 @@
 
 MAKE_JOBS_SAFE=        no
 
-BIND_VERSION=  9.8.0-P1
+BIND_VERSION=  9.8.0-P2
 
 .include "../../mk/bsd.prefs.mk"
 
--- distinfo.orig       2011-05-26 15:11:45.000000000 -0700
+++ distinfo    2011-05-27 00:38:40.000000000 -0700
@@ -1,8 +1,8 @@
 $NetBSD: distinfo,v 1.2 2011/05/06 00:34:32 taca Exp $
 
-SHA1 (bind-9.8.0-P1.tar.gz) = aa8f308f218e437ac4bad616e0ae83a9b9c40c29
-RMD160 (bind-9.8.0-P1.tar.gz) = 7f86bcd531fea341de6d79386448d58de4222c90
-Size (bind-9.8.0-P1.tar.gz) = 7701530 bytes
+SHA1 (bind-9.8.0-P2.tar.gz) = b3492ad11cfbf2939d9b0fb62c52c204de58679b
+RMD160 (bind-9.8.0-P2.tar.gz) = 3db0b25303da78f06d6fb48f66908111cb0eb34c
+Size (bind-9.8.0-P2.tar.gz) = 7702702 bytes
 SHA1 (patch-config.threads.in) = 3d8ee03230fdb6aca545a67759ba7aacda52bb61
 SHA1 (patch-configure) = edf5a32b5c05aea110316f877264c22a2c4344ba
 SHA1 (patch-lib_dns_rbt.c) = 29fb5c24ff3558f1621e93ea16419e32dbc695b7

Prev by Date: Re: pkg/44983: Unable to build lang/openjdk from sources
Next by Date: pkg/44999: lang/perl5 fails to build on Solaris10 with gcc in 64bit mode
Previous by Thread: Re: pkg/34758 (Update MusiXTeX (print/tex-musixtex) from 112 to 113)
Next by Thread: pkg/44999: lang/perl5 fails to build on Solaris10 with gcc in 64bit mode
Indexes:

Home | Main Index | Thread Index | Old Index