Verify bind-9.3.6-4.P1.el5_4.1.rpm resolves CVE 2009-4022 despite warning in /var/log/messages on RHEL5

Solution Verified - Updated -

Issue

  • Verify bind-9.3.6-4.P1.el5_4.1.rpm resolves CVE 2009-4022 despite warning in /var/log/messages
  • Receiving warning error messages when restarting the named service since updating to bind-9.3.6-4.P1.el5_4.1 per CVE 2009-4022 and would like to verify that this is either working as expected or otherwise nothing to worry about before implementing this on the rest of the systems.
    Dec  8 17:42:19 xdns1 named[24167]: starting BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.1 -u named -t /var/named/chroot 
    Dec  8 17:42:19 xdns1 named[24167]: adjusted limit on open files from 1024 to 1048576 
    Dec  8 17:42:19 xdns1 named[24167]: found 8 CPUs, using 8 worker threads 
    Dec  8 17:42:19 xdns1 named[24167]: using up to 4096 sockets 
    Dec  8 17:42:19 xdns1 named[24167]: loading configuration from '/etc/named.conf' 
    Dec  8 17:42:19 xdns1 named[24167]: using default UDP/IPv4 port range: [1024, 65535] 
    Dec  8 17:42:19 xdns1 named[24167]: using default UDP/IPv6 port range: [1024, 65535] 
    Dec  8 17:42:19 xdns1 named[24167]: listening on IPv4 interface lo, 127.0.0.1#53 
    Dec  8 17:42:19 xdns1 named[24167]: listening on IPv4 interface eth0, 10.56.129.202#53 
    Dec  8 17:42:19 xdns1 named[24167]: command channel listening on 127.0.0.1#953 
    Dec  8 17:42:19 xdns1 named[24167]: the working directory is not writable 
    Dec  8 17:42:19 xdns1 named[24167]: 08-Dec-2009 17:42:19.827 info: zone 0.0.127.in-addr.arpa/IN: loaded serial 2006041200
    

Environment

  • Red Hat Enterprise Linux 5
  • bind-libs-9.3.6-4.P1.el5_4.1
  • bind-chroot-9.3.6-4.P1.el5_4.1
  • bind-9.3.6-4.P1.el5_4.1
  • bind-utils-9.3.6-4.P1.el5_4.1

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In