Launchpad.net

CVE 2010-3613

named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and 9.7.x before 9.7.2-P3 does not properly handle the combination of signed negative responses and corresponding RRSIG records in the cache, which allows remote attackers to cause a denial of service (daemon crash) via a query for cached data.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.isc.org/ann...
CONFIRM: http://www.isc.org/sof...
UBUNTU: USN-1025-1
CERT-VN: VU#706148
BID: 45133
OSVDB: 69558
SECTRACK: 1024817
SECUNIA: 42374
SECUNIA: 42459
VUPEN: ADV-2010-3102
VUPEN: ADV-2010-3103
FEDORA: FEDORA-2010-18521
SECUNIA: 42522
VUPEN: ADV-2010-3138
VUPEN: ADV-2010-3139
VUPEN: ADV-2010-3140
DEBIAN: DSA-2130
REDHAT: RHSA-2010:0976
FEDORA: FEDORA-2010-18469
REDHAT: RHSA-2010:0975
REDHAT: RHSA-2010:1000
SECUNIA: 42671
SECUNIA: 42707
CONFIRM: http://support.avaya.c...
MANDRIVA: MDVSA-2010:253
NETBSD: NetBSD-SA2011-001
SECUNIA: 43141
VUPEN: ADV-2011-0267
MLIST: [security-announce] 20...
CONFIRM: http://www.vmware.com/...
VUPEN: ADV-2011-0606
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2011-10-12-3
HP: HPSBUX02655
HP: SSRT100353
SLACKWARE: SSA:2010-350-01
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20110308 VMSA-2011-000...

Launchpad.net

CVE 2010-3613

Related bugs

References