Joined: 12 May 2004
|Posted: Thu Mar 14, 2019 6:26 am Post subject: [ glsa 201903-13 ] bind
|Gentoo Linux Security Advisory
Title: BIND: Multiple vulnerabilities (GLSA 201903-13)
Bug(s): #657654, #666946
Multiple vulnerabilities have been found in BIND, the worst of
which could result in a Denial of Service condition.
BIND (Berkeley Internet Name Domain) is a Name Server.
Vulnerable: < 9.12.1_p2-r1
Unaffected: >= 9.12.1_p2-r1
Architectures: All supported architectures
Multiple vulnerabilities have been discovered in BIND. Please review the
CVE identifiers referenced below for details.
BIND can improperly permit recursive query service to unauthorized
clients possibly resulting in a Denial of Service condition or to be used
in DNS reflection attacks.
There is no known workaround at this time.
All bind users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=net-dns/bind-9.12.1_p2-r1"