USN-1025-1: Bind vulnerabilities
Ubuntu Security Notice USN-1025-1
1st December, 2010
bind9 vulnerabilities
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 10.10
- Ubuntu 10.04 LTS
- Ubuntu 9.10
- Ubuntu 8.04 LTS
- Ubuntu 6.06 LTS
Software description
- bind9
Details
It was discovered that Bind would incorrectly allow a ncache entry and a
rrsig for the same type. A remote attacker could exploit this to cause
Bind to crash, resulting in a denial of service. (CVE-2010-3613)
It was discovered that Bind would incorrectly mark zone data as insecure
when the zone is undergoing a key algorithm rollover. (CVE-2010-3614)
Update instructions
The problem can be corrected by updating your system to the following package version:
- Ubuntu 10.10:
- libdns66 1:9.7.1.dfsg.P2-2ubuntu0.1
- Ubuntu 10.04 LTS:
- libdns64 1:9.7.0.dfsg.P1-1ubuntu0.1
- Ubuntu 9.10:
- libdns53 1:9.6.1.dfsg.P1-3ubuntu0.4
- Ubuntu 8.04 LTS:
- libdns36 1:9.4.2.dfsg.P2-2ubuntu0.6
- Ubuntu 6.06 LTS:
- libdns23 1:9.3.2-2ubuntu1.12
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system update will make all the necessary changes.