DOCUMENTATION

Views

Search

Toolbox

Advisories:rPSA-2008-0231

From rPath Wiki

Jump to: navigation, search

rPath Security Advisory 2008-0231-2

Published: 2008-07-19

Updated

2008-07-22 added missing zones, completed /srv/named/ relocation

Products

rPath Linux 2

Rating

Major

Exposure Level Classification

Remote System User Deterministic Weakness

Updated Versions

bind=conary.rpath.com@rpl:2/9.4.2_P1-4-0.1
bind-utils=conary.rpath.com@rpl:2/9.4.2_P1-4-0.1

rPath Issue Tracking System

References

CVE-2008-1447

Description

Previous versions of the bind package are vulnerable to a

cache-poisoning attack due to a weakness in the DNS protocol.

This update improves bind's resilience to this attack; however,

it does not provide a definitive solution.

Additionally, the bind package has been updated with root

nameserver information, including the new IP address for

the "L" root nameserver.

22 July 2008 Update: added missing zone files referenced by

supplied /etc/named.conf and completed relocation of server

configuration to /srv/named/ directory

Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html

Retrieved from "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0231"

Categories: Support Issue | Advisories