A vulnerability has been identified in ISC BIND, which could be exploited by remote attackers to cause a denial of service. This issue is caused due to the "dns_db_findrdataset()" function failing when the prerequisite section of a dynamic update message contains a record of type "ANY" and where at least one RRset for this FQDN exists on the server, which could allow attackers to cause a vulnerable server to exit when receiving a specially crafted dynamic update message sent to a zone for which the server is the master.

Affected Products

ISC BIND versions 9.x

Solution

Upgrade to ISC BIND version 9.4.3-P3, 9.5.1-P3 or 9.6.1-P1 :
http://ftp.isc.org/isc/bind9/9.6.1-P1/bind-9.6.1-P1.tar.gz
http://ftp.isc.org/isc/bind9/9.5.1-P3/bind-9.5.1-P3.tar.gz
http://ftp.isc.org/isc/bind9/9.4.3-P3/bind-9.4.3-P3.tar.gz

References

http://www.vupen.com/english/advisories/2009/2036
https://www.isc.org/node/474

Credits

Vulnerability reported by Matthias Urlichs.

Changelog

2009-07-29 : Initial release

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.