it.ucsf.edu

Security Update:Updates Released to Address a Vulnerability in BIND

Status Type

Security Update

Date and Time

Monday, February 13, 2017 - 11:50

Reason

Security Update

Impact

BIND Users

 

WHAT HAPPENED?
The Internet Systems Consortium (ISC) released updates that address a vulnerability in BIND.

Advanced Users: For a complete description of the vulnerability visit ISC Knowledge Base Articles AA-01453 (CVE-2017-3135: Combination of DNS64 and RPZ Can Lead to Crash) at https://kb.isc.org/article/AA-01453/0.


AVAILABLE UPDATES INCLUDE:

  • BIND 9 version 9.9.9-P6
  • BIND 9 version 9.10.4-P6
  • BIND 9 version 9.11.0-P3
  • BIND 9 version 9.9.9-S8


WHAT'S THE PROBLEM?
Exploitation of the vulnerability could allow a remote attacker to cause a denial-of-service condition.


WHAT DO YOU NEED TO DO?
Users and administrators are encouraged to review the Knowledge Base Article listed above and apply the necessary updates.


RELATED LINKS