Technical Description

Two vulnerabilities have been identified in ISC BIND, which could be exploited by attackers to cause a denial of service.

The first issue is due to an error when processing SIG queries, which could be exploited by attackers to crash recursive servers when more than one SIG(covered) Resource Record set (RRset) is returned or authoritative servers serving a RFC 2535 DNSSEC zone where there are multiple SIG(covered) RRsets.

The second flaw is due to an error when handling multiple recursive queries, which could be exploited by attackers to trigger a INSIST failure and cause certain responses to arrive after all the clients looking for the response have left the recursion queue.

Affected Products

BIND versions 9.2.x
BIND versions 9.3.x
BIND versions 9.4.x

Solution

Upgrade to BIND version 9.4.0b2, 9.3.3rc2, 9.3.2-P1, 9.2.7rc1, or 9.2.6-P1 :
http://www.isc.org/index.pl?/sw/bind/

References

http://www.vupen.com/english/advisories/2006/3473
http://www.isc.org/index.pl?/sw/bind/bind-security.php
http://www.kb.cert.org/vuls/id/697164
http://www.kb.cert.org/vuls/id/915404

Credits

Vulnerabilities reported by The Measurement Factory

ChangeLog

2006-09-06 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.