Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista

ISC BIND Negative Cache Poison Denial Of Service Vulnerability

Solution:
ISC BIND has released upgrades to address this issue.

Sun has released an updated alert (Sun Alert ID: 57434) that contains a workaround for Solaris 7,8 and 9 based systems. Fixes are also available.

Sun has made fixes available for Qube3 and RaQ4 systems.

IBM has released a revised advisory stating that APARS to address this issue for AIX 4.3.3, 5.1.0 and 5.2.0 are available. Customers are advised to apply these APARS as soon as possible. Further information regarding obtaining and applying appropriate APARS can be found in the referenced advisory.

Sun have released a security update to address this issue in the Sun RAQ XTR. Please see references section for further details. Fixes are linked below.

Hewlett-Packard has released an advisory (SSRT3653) and early release patches to address this issue in Tru64 based systems. Customers are advised to apply relative fixes as soon as possible. Further detail is available in the referenced advisory.

SCO has released an advisory (CSSA-2003-SCO.33) and fixes to address this issue. Customers are advised to apply relative fixes as soon as possible. Further detail is available in the referenced advisory, fixes are linked below.

Hewlett-Packard has released an advisory (HPSBUX0311-303) and fixes to address this issue in HP-UX 11.00 and 11.11. Customers are advised to apply relative fixes as soon as possible. Further detail is available in the referenced advisory, fixes are linked below. HP revised this bulletin to include a patch for HP-UX 11.11 to replace the preliminary depot that was available.

NetBSD have reported that fixes for this issue are pending, alternatively NetBSD have advised that users can use BIND 9 from pkgsrc to make their systems invulnerable to this issue.

Nixu have advised customers who are running a Nixu NameSurfer installation to upgrade their visible nameservers to BIND versions 9.2.1 or newer.

IBM have released an APAR to address this issue in IBM AIX 5.1L. Affected users are advised to download and apply fixes as soon as posible.

Engarde Linux has released an advisory (ESA-20031126-031) and fixes to address this issue. Guardian Digital Secure Network Users are advised to apply appropriate fixes as soon as possible. Further details regarding obtaining and applying these fixes can be found in the referenced advisory.

Trustix has released an advisory and fixes to address this issue.

Immunix has released an advisory and fixes to address this issue.

SuSE Linux has released an advisory (SuSE-SA:2003:047) and fixes to address this issue. Users are advised to apply appropriate fixes as soon as possible. Further details regarding obtaining and applying these fixes can be found in the referenced advisory.

FreeBSD has released a security advisory (FreeBSD-SA-03:19.bind) including patches to address this issue. Patches are available below.

NetBSD has released a security advisory 2003-018 including patches to address this issue. Please see the referenced advisory for more information.

IBM has released an advisory with fixes to address this issue in AIX 4.3.3, AIX 5.1.0 and AIX 5.2.0. Further information can be obtained by contacting the vendor. See referenced advisory for more details.

Debian has released an advisory (DSA 409-1) to address this issue. Please see the attached advisory for details on obtaining and applying fixes.

HP has released an advisory (SSRT3653) to address this issue in OpenVMS. Please see the attached advisory for details on obtaining and applying fixes. The following fixes have been released:

For VAX only TCP/IP V5.3:
TCPIP$BIND_SERVER.EXE_ECO_G_V_V53
For VAX only TCP/IP V5.1:
TCPIP$BIND_SERVER.EXE_ECO_I_V_V51
For Alpha only TCP/IP V5.1:
TCPIP$BIND_SERVER.EXE_ECO_I_A_V51

SCO has released advisory CSSA-2004-003.0 for OpenLinux.

BorderWare has released patches dealing with this issue for their Firewall Server product. Please contact the vendor for more information and details on obtaining the patch.

Hewlett-Packard has released advisory HPSBTU01066 along with a resolution dealing with this issue. Please see the referenced advisory for more information.

SCO has released advisory SCOSA-2005.4 to address this issue in OpenServer 5.0.6 and OpenServer 5.0.7. Please see the referenced advisory for more information.

Fixes:


Sun Cobalt RaQ 4

Sun Solaris 8

IBM AIX 5.1

IBM AIX 5.2

Sun Cobalt RaQ XTR

Sun Solaris 7.0

Sun Solaris 9

Sun Cobalt Qube 3

Sun Solaris 9_x86

Sun Solaris 7.0_x86

Sun Solaris 8_x86

HP HP-UX 11.0

HP HP-UX 11.11

SCO OpenLinux Server 3.1.1

SCO OpenLinux Workstation 3.1.1

IBM AIX 4.3.3

FreeBSD FreeBSD 4.4

FreeBSD FreeBSD 4.5

FreeBSD FreeBSD 4.6

FreeBSD FreeBSD 4.7

FreeBSD FreeBSD 4.8

FreeBSD FreeBSD 4.9

FreeBSD FreeBSD 5.0

Compaq TCP/IP Services For OpenVMS 5.1

Compaq TCP/IP Services For OpenVMS 5.3

SCO Unixware 7.1.1

ISC BIND 8.2.3

ISC BIND 8.2.4

ISC BIND 8.2.6

ISC BIND 8.3 .0

ISC BIND 8.3.1

ISC BIND 8.3.2

ISC BIND 8.3.3

ISC BIND 8.3.4

ISC BIND 8.3.5

ISC BIND 8.3.6

ISC BIND 8.4

ISC BIND 8.4.1







 

Privacy Statement
Copyright 2008, SecurityFocus