Red Hat Product Errata RHSA-2007:0057 - Security Advisory

Issued:: 2007-03-14
Updated:: 2007-03-14

RHSA-2007:0057 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: bind security update

Type/Severity

Security Advisory: Moderate

Topic

Updated bind packages that fix a security issue and a bug are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

Description

ISC BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols.

A flaw was found in the way BIND processed certain DNS query responses. On
servers that had enabled DNSSEC validation, this could allow a remote
attacker to cause a denial of service. (CVE-2007-0494)

A use-after-free flaw was found in BIND. On servers that have recursion
enabled, this could allow a remote attacker to cause a denial of service.
(CVE-2007-0493)

Users of BIND are advised to upgrade to these updated packages, which
contain backported patches to correct these issues.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Affected Products

Red Hat Enterprise Linux Server 5 x86_64
Red Hat Enterprise Linux Server 5 ia64
Red Hat Enterprise Linux Server 5 i386
Red Hat Enterprise Linux Workstation 5 x86_64
Red Hat Enterprise Linux Workstation 5 i386
Red Hat Enterprise Linux Desktop 5 x86_64
Red Hat Enterprise Linux Desktop 5 i386
Red Hat Enterprise Linux for IBM z Systems 5 s390x
Red Hat Enterprise Linux for Power, big endian 5 ppc
Red Hat Enterprise Linux Server from RHUI 5 x86_64
Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

BZ - 224445 - CVE-2007-0493 BIND might crash after attempting to read free()-ed memory
BZ - 225229 - CVE-2007-0494 BIND dnssec denial of service

CVEs

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 5

SRPM
bind-9.3.3-8.el5.src.rpm	SHA-256: ae7e91bd4c6da5ffcdb2a95379b23c6789ebcf37a281b9d476e390b59128fad9
x86_64
bind-9.3.3-8.el5.x86_64.rpm	SHA-256: 68c14db691cc5ab9cf71d4b81499ab93a94893837d3a6d4cfb635ffe6a064123
bind-chroot-9.3.3-8.el5.x86_64.rpm	SHA-256: 6010b6843218b0832a9cabe60e6b5456a492e0e9066a7dec5e9097ec7852ae1c
bind-devel-9.3.3-8.el5.i386.rpm	SHA-256: 91f9b6fed6e72a798a1d0599b6db95cadc4732086c2bf0c9c22e346611507d03
bind-devel-9.3.3-8.el5.x86_64.rpm	SHA-256: 7a8e39654efabb1779e74699c509638511a18ecfe661a4be26ef3a660bee2bfa
bind-libbind-devel-9.3.3-8.el5.i386.rpm	SHA-256: a7624265f93ec9344164887bbad0bc5c1c26f1e455799254214764b6372c8a39
bind-libbind-devel-9.3.3-8.el5.x86_64.rpm	SHA-256: 1a76613482cac798237d1b4b2e8f72d383e62ac93077f2ef451af87cf32b59e1
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-libs-9.3.3-8.el5.x86_64.rpm	SHA-256: c61467ef9d953df4623ba0ea8d5121d216219539031f3bb57197648659dce5ff
bind-sdb-9.3.3-8.el5.x86_64.rpm	SHA-256: 3016bf2d3f2f8a4eb6957c169ea88e0d7c9747ae0f3bd8bdf9dbe198832a4a73
bind-utils-9.3.3-8.el5.x86_64.rpm	SHA-256: fafe1a00fef979c056112e02b73c83688d12036b3f706ea460302bff7c29f2ed
caching-nameserver-9.3.3-8.el5.x86_64.rpm	SHA-256: e35103ae377a7ddd28640e28bc4860d6c936f59743e45f7d2d8550ef57f1d6fa
ia64
bind-9.3.3-8.el5.ia64.rpm	SHA-256: 758d29fc40f41747a79a990a1e04624750e97881926555698cf28e008b6805a6
bind-chroot-9.3.3-8.el5.ia64.rpm	SHA-256: 8dedc384ef1f44d02e0800f6a071209dc7fd0ce78a09bf1e98a20ca858133bde
bind-devel-9.3.3-8.el5.ia64.rpm	SHA-256: 5e04f0fa771d32e105c89ff63c5f245d72b1498b5c80822aed571951076332fa
bind-libbind-devel-9.3.3-8.el5.ia64.rpm	SHA-256: 57165fe09e595d2ea9ece1815befe39a1a01ed1b04d91e8134de0f1fc2195981
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-libs-9.3.3-8.el5.ia64.rpm	SHA-256: bc3f9ab1739f4188eeed8611fe624a5cfc920fee479ae9ea270c330783ec16b3
bind-sdb-9.3.3-8.el5.ia64.rpm	SHA-256: fc708b75aa1291e4a2722ce48df14d48dd9e1cbf5cebb7c7ac674af83a6ca629
bind-utils-9.3.3-8.el5.ia64.rpm	SHA-256: f0d625b85889b1f9e8e73c216bcfc980f7090405fd9205b34506f1720e73e650
caching-nameserver-9.3.3-8.el5.ia64.rpm	SHA-256: b0f27e61e6153d9f2ba82568c81ee388baac39612d73daddd8fe95cc02e28ee0
i386
bind-9.3.3-8.el5.i386.rpm	SHA-256: 0799a3f3c9e7417bc083b782a8306a040a41153e65f2af4d3df1387e92e0c13c
bind-chroot-9.3.3-8.el5.i386.rpm	SHA-256: 1c3d41421e8123d2934eafca9eb394b505a4b84d68a573aa75a6e2ce08b0c4d2
bind-devel-9.3.3-8.el5.i386.rpm	SHA-256: 91f9b6fed6e72a798a1d0599b6db95cadc4732086c2bf0c9c22e346611507d03
bind-libbind-devel-9.3.3-8.el5.i386.rpm	SHA-256: a7624265f93ec9344164887bbad0bc5c1c26f1e455799254214764b6372c8a39
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-sdb-9.3.3-8.el5.i386.rpm	SHA-256: f3cf43a0d1ce4f048521dd9fe100e198bdc5ea07d67c1efb61661658cbcc663c
bind-utils-9.3.3-8.el5.i386.rpm	SHA-256: 3a3fc8f7d8146093f941c366b34bf98b7a5184a7545c192a7f588b6685c4954c
caching-nameserver-9.3.3-8.el5.i386.rpm	SHA-256: 6f06a8f512fd281ac358a747db7c470d26a454062da662fdad9ce574042a13a6

Red Hat Enterprise Linux Workstation 5

SRPM
bind-9.3.3-8.el5.src.rpm	SHA-256: ae7e91bd4c6da5ffcdb2a95379b23c6789ebcf37a281b9d476e390b59128fad9
x86_64
bind-9.3.3-8.el5.x86_64.rpm	SHA-256: 68c14db691cc5ab9cf71d4b81499ab93a94893837d3a6d4cfb635ffe6a064123
bind-chroot-9.3.3-8.el5.x86_64.rpm	SHA-256: 6010b6843218b0832a9cabe60e6b5456a492e0e9066a7dec5e9097ec7852ae1c
bind-devel-9.3.3-8.el5.i386.rpm	SHA-256: 91f9b6fed6e72a798a1d0599b6db95cadc4732086c2bf0c9c22e346611507d03
bind-devel-9.3.3-8.el5.x86_64.rpm	SHA-256: 7a8e39654efabb1779e74699c509638511a18ecfe661a4be26ef3a660bee2bfa
bind-libbind-devel-9.3.3-8.el5.i386.rpm	SHA-256: a7624265f93ec9344164887bbad0bc5c1c26f1e455799254214764b6372c8a39
bind-libbind-devel-9.3.3-8.el5.x86_64.rpm	SHA-256: 1a76613482cac798237d1b4b2e8f72d383e62ac93077f2ef451af87cf32b59e1
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-libs-9.3.3-8.el5.x86_64.rpm	SHA-256: c61467ef9d953df4623ba0ea8d5121d216219539031f3bb57197648659dce5ff
bind-sdb-9.3.3-8.el5.x86_64.rpm	SHA-256: 3016bf2d3f2f8a4eb6957c169ea88e0d7c9747ae0f3bd8bdf9dbe198832a4a73
bind-utils-9.3.3-8.el5.x86_64.rpm	SHA-256: fafe1a00fef979c056112e02b73c83688d12036b3f706ea460302bff7c29f2ed
caching-nameserver-9.3.3-8.el5.x86_64.rpm	SHA-256: e35103ae377a7ddd28640e28bc4860d6c936f59743e45f7d2d8550ef57f1d6fa
i386
bind-9.3.3-8.el5.i386.rpm	SHA-256: 0799a3f3c9e7417bc083b782a8306a040a41153e65f2af4d3df1387e92e0c13c
bind-chroot-9.3.3-8.el5.i386.rpm	SHA-256: 1c3d41421e8123d2934eafca9eb394b505a4b84d68a573aa75a6e2ce08b0c4d2
bind-devel-9.3.3-8.el5.i386.rpm	SHA-256: 91f9b6fed6e72a798a1d0599b6db95cadc4732086c2bf0c9c22e346611507d03
bind-libbind-devel-9.3.3-8.el5.i386.rpm	SHA-256: a7624265f93ec9344164887bbad0bc5c1c26f1e455799254214764b6372c8a39
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-sdb-9.3.3-8.el5.i386.rpm	SHA-256: f3cf43a0d1ce4f048521dd9fe100e198bdc5ea07d67c1efb61661658cbcc663c
bind-utils-9.3.3-8.el5.i386.rpm	SHA-256: 3a3fc8f7d8146093f941c366b34bf98b7a5184a7545c192a7f588b6685c4954c
caching-nameserver-9.3.3-8.el5.i386.rpm	SHA-256: 6f06a8f512fd281ac358a747db7c470d26a454062da662fdad9ce574042a13a6

Red Hat Enterprise Linux Desktop 5

SRPM
bind-9.3.3-8.el5.src.rpm	SHA-256: ae7e91bd4c6da5ffcdb2a95379b23c6789ebcf37a281b9d476e390b59128fad9
x86_64
bind-9.3.3-8.el5.x86_64.rpm	SHA-256: 68c14db691cc5ab9cf71d4b81499ab93a94893837d3a6d4cfb635ffe6a064123
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-libs-9.3.3-8.el5.x86_64.rpm	SHA-256: c61467ef9d953df4623ba0ea8d5121d216219539031f3bb57197648659dce5ff
bind-sdb-9.3.3-8.el5.x86_64.rpm	SHA-256: 3016bf2d3f2f8a4eb6957c169ea88e0d7c9747ae0f3bd8bdf9dbe198832a4a73
bind-utils-9.3.3-8.el5.x86_64.rpm	SHA-256: fafe1a00fef979c056112e02b73c83688d12036b3f706ea460302bff7c29f2ed
i386
bind-9.3.3-8.el5.i386.rpm	SHA-256: 0799a3f3c9e7417bc083b782a8306a040a41153e65f2af4d3df1387e92e0c13c
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-sdb-9.3.3-8.el5.i386.rpm	SHA-256: f3cf43a0d1ce4f048521dd9fe100e198bdc5ea07d67c1efb61661658cbcc663c
bind-utils-9.3.3-8.el5.i386.rpm	SHA-256: 3a3fc8f7d8146093f941c366b34bf98b7a5184a7545c192a7f588b6685c4954c

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
bind-9.3.3-8.el5.src.rpm	SHA-256: ae7e91bd4c6da5ffcdb2a95379b23c6789ebcf37a281b9d476e390b59128fad9
s390x
bind-9.3.3-8.el5.s390x.rpm	SHA-256: c958ed0e7763bdec76a950c05929ee648de2038793c1d5c4d1f0d10522be05c4
bind-chroot-9.3.3-8.el5.s390x.rpm	SHA-256: f7b2c98df63e541df880731df731eff196f8b47049ba6310202e09f75d244bde
bind-devel-9.3.3-8.el5.s390.rpm	SHA-256: 10d33ca0584ea390ab5dc293fb330f608f0a156f71c4c3d304c7b3c96a508f42
bind-devel-9.3.3-8.el5.s390x.rpm	SHA-256: 95b7a03cb39415a20a75b8121b452c258758632ba9ee37aeb298674bbc8e85f1
bind-libbind-devel-9.3.3-8.el5.s390.rpm	SHA-256: cdc09d541e3617b6bfc4dedf4c0e634fde96beb8722f4b016ba6babf5af422a8
bind-libbind-devel-9.3.3-8.el5.s390x.rpm	SHA-256: a2bd55e3be72c1c6db97e0bde2d5dc3763e89ccddfed3bfc6be86ff104632142
bind-libs-9.3.3-8.el5.s390.rpm	SHA-256: 4d505bbfe2617c3e4dd01d326ccb6a848d96c09fe9428d52ee9febbbe0f2920b
bind-libs-9.3.3-8.el5.s390x.rpm	SHA-256: 125b1c492e081433b48ff0cab4edba421c7d2a9752f6ab63b3fccf8345429160
bind-sdb-9.3.3-8.el5.s390x.rpm	SHA-256: 912390f29c3e4e5352b655ebfa9d40027ce6fe9486a8f8c6dab059e3aaa10346
bind-utils-9.3.3-8.el5.s390x.rpm	SHA-256: 55aa5204a7a0239818b2b68b5e012b54a7bae3e6975582c2ff88cdb9cd7e33ba
caching-nameserver-9.3.3-8.el5.s390x.rpm	SHA-256: 2c93626cad5ad028c2725d6c73f5cc6d3a48692a9eb16e4bb0a10ee732707c1e

Red Hat Enterprise Linux for Power, big endian 5

SRPM
bind-9.3.3-8.el5.src.rpm	SHA-256: ae7e91bd4c6da5ffcdb2a95379b23c6789ebcf37a281b9d476e390b59128fad9
ppc
bind-9.3.3-8.el5.ppc.rpm	SHA-256: 9f915c81af8930f48ce63c6e9c36186028da3f8c0148b51265605c120a314713
bind-chroot-9.3.3-8.el5.ppc.rpm	SHA-256: 8d5bb02f44fbd6991c8570861f2b91fe9ae81338144ec9c6afae95d66fdcd9b2
bind-devel-9.3.3-8.el5.ppc.rpm	SHA-256: 5ad71fc267232dcdf15d8b97e62976064cbf34beb881c25495916612164b2652
bind-devel-9.3.3-8.el5.ppc64.rpm	SHA-256: ded5fb88f72a5f929ca01719a810c5a7de70be2064e566bc47529809ef40b06c
bind-libbind-devel-9.3.3-8.el5.ppc.rpm	SHA-256: df960eafdf17a23d24d4a4a7a539f518e46b2b22e18d0026c7275780348fc0eb
bind-libbind-devel-9.3.3-8.el5.ppc64.rpm	SHA-256: f4f6c71620f6e3e15cf01f88d5278c17b457cae3cecdebb628f14ecc7df020e2
bind-libs-9.3.3-8.el5.ppc.rpm	SHA-256: 942cfd7a534048362aa1a99c1b859eee5223aedd8823a52c1bf09d584489d9e3
bind-libs-9.3.3-8.el5.ppc64.rpm	SHA-256: 77f6ded51ab787337d56656a79a30c9963c1f7bed5af7373748f43041acb9f05
bind-sdb-9.3.3-8.el5.ppc.rpm	SHA-256: ffac133ca4b740fc45ded68c9df545860efe8f6fc83232bcb691bca1c29ce298
bind-utils-9.3.3-8.el5.ppc.rpm	SHA-256: c25c8eadbe65ede039105d77b9f6b302869af7abb19cfe621efe987b679ca111
caching-nameserver-9.3.3-8.el5.ppc.rpm	SHA-256: 84d632529eb0777dcb0ed3ed60222bcac769178c945e475cf7e4c5064ff8b08b

Red Hat Enterprise Linux Server from RHUI 5

SRPM
bind-9.3.3-8.el5.src.rpm	SHA-256: ae7e91bd4c6da5ffcdb2a95379b23c6789ebcf37a281b9d476e390b59128fad9
x86_64
bind-9.3.3-8.el5.x86_64.rpm	SHA-256: 68c14db691cc5ab9cf71d4b81499ab93a94893837d3a6d4cfb635ffe6a064123
bind-chroot-9.3.3-8.el5.x86_64.rpm	SHA-256: 6010b6843218b0832a9cabe60e6b5456a492e0e9066a7dec5e9097ec7852ae1c
bind-devel-9.3.3-8.el5.i386.rpm	SHA-256: 91f9b6fed6e72a798a1d0599b6db95cadc4732086c2bf0c9c22e346611507d03
bind-devel-9.3.3-8.el5.x86_64.rpm	SHA-256: 7a8e39654efabb1779e74699c509638511a18ecfe661a4be26ef3a660bee2bfa
bind-libbind-devel-9.3.3-8.el5.i386.rpm	SHA-256: a7624265f93ec9344164887bbad0bc5c1c26f1e455799254214764b6372c8a39
bind-libbind-devel-9.3.3-8.el5.x86_64.rpm	SHA-256: 1a76613482cac798237d1b4b2e8f72d383e62ac93077f2ef451af87cf32b59e1
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-libs-9.3.3-8.el5.x86_64.rpm	SHA-256: c61467ef9d953df4623ba0ea8d5121d216219539031f3bb57197648659dce5ff
bind-sdb-9.3.3-8.el5.x86_64.rpm	SHA-256: 3016bf2d3f2f8a4eb6957c169ea88e0d7c9747ae0f3bd8bdf9dbe198832a4a73
bind-utils-9.3.3-8.el5.x86_64.rpm	SHA-256: fafe1a00fef979c056112e02b73c83688d12036b3f706ea460302bff7c29f2ed
caching-nameserver-9.3.3-8.el5.x86_64.rpm	SHA-256: e35103ae377a7ddd28640e28bc4860d6c936f59743e45f7d2d8550ef57f1d6fa
i386
bind-9.3.3-8.el5.i386.rpm	SHA-256: 0799a3f3c9e7417bc083b782a8306a040a41153e65f2af4d3df1387e92e0c13c
bind-chroot-9.3.3-8.el5.i386.rpm	SHA-256: 1c3d41421e8123d2934eafca9eb394b505a4b84d68a573aa75a6e2ce08b0c4d2
bind-devel-9.3.3-8.el5.i386.rpm	SHA-256: 91f9b6fed6e72a798a1d0599b6db95cadc4732086c2bf0c9c22e346611507d03
bind-libbind-devel-9.3.3-8.el5.i386.rpm	SHA-256: a7624265f93ec9344164887bbad0bc5c1c26f1e455799254214764b6372c8a39
bind-libs-9.3.3-8.el5.i386.rpm	SHA-256: a8dbcc6af820b4bc2509dee0484e41bb862bd37ad47214851af8e89c95b34b8d
bind-sdb-9.3.3-8.el5.i386.rpm	SHA-256: f3cf43a0d1ce4f048521dd9fe100e198bdc5ea07d67c1efb61661658cbcc663c
bind-utils-9.3.3-8.el5.i386.rpm	SHA-256: 3a3fc8f7d8146093f941c366b34bf98b7a5184a7545c192a7f588b6685c4954c
caching-nameserver-9.3.3-8.el5.i386.rpm	SHA-256: 6f06a8f512fd281ac358a747db7c470d26a454062da662fdad9ce574042a13a6

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories