Slashdot Mirror

← Back to Stories (view on slashdot.org)

New DoS Vulnerability In All Versions of BIND 9

Posted by kdawson on from the binding-with-briars-my-joys-and-desires dept.

Icemaann writes "ISC is reporting that a new, remotely exploitable vulnerability has been found in all versions of BIND 9. A specially crafted dynamic update packet will make BIND die with an assertion error. There is an exploit in the wild and there are no access control workarounds. Red Hat claims that the exploit does not affect BIND servers that do not allow dynamic updates, but the ISC post refutes that. This is a high-priority vulnerability and DNS operators will want to upgrade BIND to the latest patch level."

2 of 197 comments (clear)

  1. Upgrade the damn thing! by mongrol · · Score: 0, Flamebait

    Honestly, why do they insist on running such an important backbone infrastructure piece on a no longer support Microsoft operating system is beyond me.

  2. Re:djb by DNS-and-BIND · · Score: 0, Flamebait
    Uh, actually, having an acquantance with the man: he is probably slobbering, shouting obscenities at rival Open Source teams, having hurtful paranoid fantasies about how the NTPD team is out to get him, and considering how hateful his next rant against people who oppose him should be.

    Maybe this is inaccurate - let's ask the New York Times for a more nuanced profile.

    --
    Shutting down free speech with violence isn't fighting fascism. It IS fascism!