DoS Attack Exploit in BIND 9

Jul 29, 2009

Ulrich Bantle

A specially crafted dynamic update message to a DNS zone for which the server is a master can raise havoc in BIND 9. An active remote exploit is already "in wide circulation."

All BIND 9 versions are affected, hence a recommended immediate update to 9.4.3-P3, 9.5.1-P3 or 9.6.1-P1. A number of Linux distros have already reacted with updated versions, among them Debian and Ubuntu.

A certain NSUPDATE from an unauthenticated attacker can bring the entire server down, creating a denial-of-service (DoS) condition. The security bulletin indicates that the vulnerability "affects all servers and is not limited to those that are configured to allow dynamic updates." The only mitigating condition is that the attack works only against DNS master servers for one or more zones and not against slave servers.

Downloads of the recommended BIND patches are available in the ISC security bulletin.

Related content

Adobe Reader and Acrobat Security Updates

Adobe has released security updates for its PDF Reader and Acrobat 9.1 and earlier versions.

more »
Open Office 2.4 Closes Vulnerabilities

The Open Office project has just announced that the latest 2.4 version of the free office suite removes a number of security issues.

more »
Adobe Security Patches Good for Win and Mac Only

Adobe Reader and Acrobat have been burdened with security problems. The Windows and Mac versions are now being patched. Linux users will have to wait.

more »
Bind 10 Test Drive

Admins have waited all of five years for the 10th major release of the Bind name server, which appeared at the end of March this year. The latest release is a complete rewrite of the DNS server, with a modular design and new configuration tools, but is it ready for business?

more »
Apache 2.2.13 with Overflow Protection

With Apache 2.2.13, developers have closed security holes in the popular webserver.

more »

comments powered by Disqus

Issue 244/2021

Buy this issue as a PDF

Digital Issue: Price $12.99

(incl. VAT)

News

Another New Linux Laptop has Arrived

Slimbook has released a monster of a Linux gaming laptop.
Mozilla VPN Now Available for Linux

Community

The promised subscription-based VPN service from Mozilla is now available for the Linux platform.
Wayland and New App Menu Coming to KDE

The 2021 roadmap for the KDE desktop environment includes some exciting features and improvements.
Deepin 20.1 has Arrived

Debian-based Deepin 20.1 has been released with some interesting new features.
CloudLinux Commits Over 1 Million Dollars to CentOS Replacement

An open source, drop-in replacement for CentOS is on its way.
Linux Mint 20.1 Beta has Been Released

The first beta of Linux Mint, Ulyssa, is now available for downloading.
Manjaro Linux 20.2 has Been Unleashed

The latest iteration of Manjaro Linux has been released with a few interesting new features.
Patreon Project Looks to Bring Linux to Apple Silicon

Developer Hector Martin has created a patreon page to fund his work on developing a port of Linux for Apple Silicon Macs.
A New Chrome OS-Like Ubuntu Remix is Now Available

Ubuntu Web looks to be your Chrome OS alternative.
System76 Refreshes the Galago Pro Laptop

Linux hardware maker has revamped one of their most popular laptops.

DoS Attack Exploit in BIND 9

Related content

Issue 244/2021

Buy this issue as a PDF

News

Tag Cloud