Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2015:2658 - Security Advisory
Issued:
2015-12-16
Updated:
2015-12-16

RHSA-2015:2658 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: bind97 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated bind97 packages that fix one security issue are now available for
Red Hat Enterprise Linux 5.

Red Hat Product Security has rated this update as having Important security
impact. A Common Vulnerability Scoring System (CVSS) base score, which
gives a detailed severity rating, is available from the CVE link in the
References section.

Description

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain
Name System (DNS) protocols. BIND includes a DNS server (named); a resolver
library (routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating correctly.

A denial of service flaw was found in the way BIND processed certain
records with malformed class attributes. A remote attacker could use this
flaw to send a query to request a cached record with a malformed class
attribute that would cause named functioning as an authoritative or
recursive server to crash. (CVE-2015-8000)

Note: This issue affects authoritative servers as well as recursive
servers, however authoritative servers are at limited risk if they perform
authentication when making recursive queries to resolve addresses for
servers listed in NS RRSETs.

Red Hat would like to thank ISC for reporting this issue.

All bind97 users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
update, the BIND daemon (named) will be restarted automatically.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux Server 5 x86_64
  • Red Hat Enterprise Linux Server 5 ia64
  • Red Hat Enterprise Linux Server 5 i386
  • Red Hat Enterprise Linux Workstation 5 x86_64
  • Red Hat Enterprise Linux Workstation 5 i386
  • Red Hat Enterprise Linux for IBM z Systems 5 s390x
  • Red Hat Enterprise Linux for Power, big endian 5 ppc
  • Red Hat Enterprise Linux Server from RHUI 5 x86_64
  • Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

  • BZ - 1291176 - CVE-2015-8000 bind: responses with a malformed class attribute can trigger an assertion failure in db.c

CVEs

  • CVE-2015-8000

References

  • https://access.redhat.com/security/updates/classification/#important
  • https://kb.isc.org/article/AA-01317
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 5

SRPM
bind97-9.7.0-21.P2.el5_11.4.src.rpm SHA-256: aecb527120cad37c941425ba5a96adcf13fcbf3f8a354e75bb453286513ac954
x86_64
bind97-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: e919b9c52dee480daa21d28a162d0f8fe0bbdd79a88cbc430966dff5bb2c00a7
bind97-chroot-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 46eb67c35c3ae706b247ae738483e208b0a5d73cecb0a550af92991a96752d17
bind97-debuginfo-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 05cbcc4495c8c6a5a295e5f9331a9c93beceff7d3d8af53ee9e74af859be643b
bind97-debuginfo-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 6eddb28923671b87df6aa15e7760e99bf2b241fa2636c8d9985d9917c3b53818
bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 6c3ff0156e3bf16875c9f5a24e2305a480b082fb3c0cc12d36f96b76aa62ca15
bind97-devel-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 210e2f10e328b7e8281108e5ec4d7eafd2a8d643097b70b15b17c407027891e7
bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 618ac4e2f13a9878ec000f65075c99e9424e79922b37e65fd597c672c90e796a
bind97-libs-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: bdad21144338691ae25e7e09f5b92560b50b106888bdb5adeaab5797aca7105e
bind97-utils-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 60ec56c5b7ca6bc5f40b0f9c9d43c24fbf1737ec19831eb7b712d6c669553017
ia64
bind97-9.7.0-21.P2.el5_11.4.ia64.rpm SHA-256: a2586362548033d13fcbb9758036d06360869c1a09472d692cede51180da63cd
bind97-chroot-9.7.0-21.P2.el5_11.4.ia64.rpm SHA-256: 89d177c66cde5c974edc703aa090d0c8531ee7eb500b8e59ed2fdf2efd7c00ce
bind97-debuginfo-9.7.0-21.P2.el5_11.4.ia64.rpm SHA-256: 304d79c612b18438a0fdb18a5085e22fd3bf64c5f0631a1b43c7051b75b1067a
bind97-devel-9.7.0-21.P2.el5_11.4.ia64.rpm SHA-256: b7222d9e2f70ec260657b001b2413cd523e39df7e533e8ae16f2d2ab71986dbd
bind97-libs-9.7.0-21.P2.el5_11.4.ia64.rpm SHA-256: 96f479bc8f4c4d511481da2a6e18ea6545d9b63038fc8c91fddaf180de8274ef
bind97-utils-9.7.0-21.P2.el5_11.4.ia64.rpm SHA-256: f661406187e4c07fc77280831a045acaef9439e48526b53da8bfb78abefe310a
i386
bind97-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: ee6aab557e093e97cb05ed18958c9e6f87267839875218e1e98beaecc0640e16
bind97-chroot-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: daab7c3bd756d1e7d3cc76f9f6046e198fe6308608644176dcc3e94ec5f4d41d
bind97-debuginfo-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 05cbcc4495c8c6a5a295e5f9331a9c93beceff7d3d8af53ee9e74af859be643b
bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 6c3ff0156e3bf16875c9f5a24e2305a480b082fb3c0cc12d36f96b76aa62ca15
bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 618ac4e2f13a9878ec000f65075c99e9424e79922b37e65fd597c672c90e796a
bind97-utils-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 0901af924ba082ae4a7619c0a0853f74427ac41f51e7df07382352b5e99c74e5

Red Hat Enterprise Linux Workstation 5

SRPM
bind97-9.7.0-21.P2.el5_11.4.src.rpm SHA-256: aecb527120cad37c941425ba5a96adcf13fcbf3f8a354e75bb453286513ac954
x86_64
bind97-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: e919b9c52dee480daa21d28a162d0f8fe0bbdd79a88cbc430966dff5bb2c00a7
bind97-chroot-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 46eb67c35c3ae706b247ae738483e208b0a5d73cecb0a550af92991a96752d17
bind97-debuginfo-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 05cbcc4495c8c6a5a295e5f9331a9c93beceff7d3d8af53ee9e74af859be643b
bind97-debuginfo-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 6eddb28923671b87df6aa15e7760e99bf2b241fa2636c8d9985d9917c3b53818
bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 6c3ff0156e3bf16875c9f5a24e2305a480b082fb3c0cc12d36f96b76aa62ca15
bind97-devel-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 210e2f10e328b7e8281108e5ec4d7eafd2a8d643097b70b15b17c407027891e7
bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 618ac4e2f13a9878ec000f65075c99e9424e79922b37e65fd597c672c90e796a
bind97-libs-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: bdad21144338691ae25e7e09f5b92560b50b106888bdb5adeaab5797aca7105e
bind97-utils-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 60ec56c5b7ca6bc5f40b0f9c9d43c24fbf1737ec19831eb7b712d6c669553017
i386
bind97-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: ee6aab557e093e97cb05ed18958c9e6f87267839875218e1e98beaecc0640e16
bind97-chroot-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: daab7c3bd756d1e7d3cc76f9f6046e198fe6308608644176dcc3e94ec5f4d41d
bind97-debuginfo-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 05cbcc4495c8c6a5a295e5f9331a9c93beceff7d3d8af53ee9e74af859be643b
bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 6c3ff0156e3bf16875c9f5a24e2305a480b082fb3c0cc12d36f96b76aa62ca15
bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 618ac4e2f13a9878ec000f65075c99e9424e79922b37e65fd597c672c90e796a
bind97-utils-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 0901af924ba082ae4a7619c0a0853f74427ac41f51e7df07382352b5e99c74e5

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
bind97-9.7.0-21.P2.el5_11.4.src.rpm SHA-256: aecb527120cad37c941425ba5a96adcf13fcbf3f8a354e75bb453286513ac954
s390x
bind97-9.7.0-21.P2.el5_11.4.s390x.rpm SHA-256: ba295e2627d04a8c7859945ac5b9ce0bc7598adc908159229948fec8ab57be10
bind97-chroot-9.7.0-21.P2.el5_11.4.s390x.rpm SHA-256: 65d7d954ec04fe7b779784afdf11add719e9ec66d33113883f3f3225ce7ce91d
bind97-debuginfo-9.7.0-21.P2.el5_11.4.s390.rpm SHA-256: 2c3d0fd8469808705dbd753e1b8e663c0b66153a9d1fa09e69dc3c870c7f1909
bind97-debuginfo-9.7.0-21.P2.el5_11.4.s390x.rpm SHA-256: 49199eaf92a66abef0e9458b96d095bd374c9d8fbf9b7abf08e27e208c9c1353
bind97-devel-9.7.0-21.P2.el5_11.4.s390.rpm SHA-256: 722f03ade51f5ccedf958c898fbba4d8fe3411c5be210b339729afc2c6c41aff
bind97-devel-9.7.0-21.P2.el5_11.4.s390x.rpm SHA-256: 740871dd48b4b44f65f6aad2ce359992cd399fc23b43bc9871974270eefce37d
bind97-libs-9.7.0-21.P2.el5_11.4.s390.rpm SHA-256: f0875b8293f68fb7d81106d2c0141f0ad6f5bf6e71285adde1c45cb6fea3f67e
bind97-libs-9.7.0-21.P2.el5_11.4.s390x.rpm SHA-256: 483bd5ce4313559e75b31f47cb1344288f0be0686f12836e3c7030c1158235c3
bind97-utils-9.7.0-21.P2.el5_11.4.s390x.rpm SHA-256: 5cd4dc255fd397746b9ccdec1cf3e785e8b67789889c0c37c8a7649db162b31e

Red Hat Enterprise Linux for Power, big endian 5

SRPM
bind97-9.7.0-21.P2.el5_11.4.src.rpm SHA-256: aecb527120cad37c941425ba5a96adcf13fcbf3f8a354e75bb453286513ac954
ppc
bind97-9.7.0-21.P2.el5_11.4.ppc.rpm SHA-256: af18127372e9f8511d7e798cdd9d6343e9b27356e099f5dda97da8ea5c56b807
bind97-chroot-9.7.0-21.P2.el5_11.4.ppc.rpm SHA-256: dc46decfa4794cb1baa39bee5af62f77a70e8b64dea5c7d18aa01e4a9a2e44f3
bind97-debuginfo-9.7.0-21.P2.el5_11.4.ppc.rpm SHA-256: 26f9d9e2f809739a5e31befcdf96c37279ea354ea3cb68a4e8046868d4386736
bind97-debuginfo-9.7.0-21.P2.el5_11.4.ppc64.rpm SHA-256: 56ed2841d0d7c6cc155e17137532fa80013fe175cd1166fe84952cc86c481075
bind97-devel-9.7.0-21.P2.el5_11.4.ppc.rpm SHA-256: 81d8bbb108baaa73aa1814be2b4221bb8c0279659aaad7298f7c09d34a0dc1e1
bind97-devel-9.7.0-21.P2.el5_11.4.ppc64.rpm SHA-256: 9c3a585037cad7a6c6690554812fced47758fb231489c3c02a0dad6e7dfb8c20
bind97-libs-9.7.0-21.P2.el5_11.4.ppc.rpm SHA-256: b9732e2fd9463e94f37a5e52ef386023082e5988f4081ac08d52d6ac6c8ee45f
bind97-libs-9.7.0-21.P2.el5_11.4.ppc64.rpm SHA-256: d1675a837e6fee176e37aae2c900b4451666c331531a1ffb67fb1abebc0f4c07
bind97-utils-9.7.0-21.P2.el5_11.4.ppc.rpm SHA-256: 875d6f0183ecc10a7a70cda64c0fcc358b9ffc26809bb2170014d47d2c4f6342

Red Hat Enterprise Linux Server from RHUI 5

SRPM
bind97-9.7.0-21.P2.el5_11.4.src.rpm SHA-256: aecb527120cad37c941425ba5a96adcf13fcbf3f8a354e75bb453286513ac954
x86_64
bind97-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: e919b9c52dee480daa21d28a162d0f8fe0bbdd79a88cbc430966dff5bb2c00a7
bind97-chroot-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 46eb67c35c3ae706b247ae738483e208b0a5d73cecb0a550af92991a96752d17
bind97-debuginfo-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 05cbcc4495c8c6a5a295e5f9331a9c93beceff7d3d8af53ee9e74af859be643b
bind97-debuginfo-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 6eddb28923671b87df6aa15e7760e99bf2b241fa2636c8d9985d9917c3b53818
bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 6c3ff0156e3bf16875c9f5a24e2305a480b082fb3c0cc12d36f96b76aa62ca15
bind97-devel-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 210e2f10e328b7e8281108e5ec4d7eafd2a8d643097b70b15b17c407027891e7
bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 618ac4e2f13a9878ec000f65075c99e9424e79922b37e65fd597c672c90e796a
bind97-libs-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: bdad21144338691ae25e7e09f5b92560b50b106888bdb5adeaab5797aca7105e
bind97-utils-9.7.0-21.P2.el5_11.4.x86_64.rpm SHA-256: 60ec56c5b7ca6bc5f40b0f9c9d43c24fbf1737ec19831eb7b712d6c669553017
i386
bind97-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: ee6aab557e093e97cb05ed18958c9e6f87267839875218e1e98beaecc0640e16
bind97-chroot-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: daab7c3bd756d1e7d3cc76f9f6046e198fe6308608644176dcc3e94ec5f4d41d
bind97-debuginfo-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 05cbcc4495c8c6a5a295e5f9331a9c93beceff7d3d8af53ee9e74af859be643b
bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 6c3ff0156e3bf16875c9f5a24e2305a480b082fb3c0cc12d36f96b76aa62ca15
bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 618ac4e2f13a9878ec000f65075c99e9424e79922b37e65fd597c672c90e796a
bind97-utils-9.7.0-21.P2.el5_11.4.i386.rpm SHA-256: 0901af924ba082ae4a7619c0a0853f74427ac41f51e7df07382352b5e99c74e5

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter