PROBLEM:
Debian Security Advisory
PLATFORM:
Debian GNU/Linux 6.0
ABSTRACT:
Debian update for bind9
REFERENCE LINKS:
Debian Security Advisory DSA-2560-1
Debian bugtracking system: Bug 690118
ISC Reference Number: AA-00801
Secunia Advisory SA51054
CVE-2012-5166
IMPACT ASSESSMENT:
Medium
DISCUSSION:
was discovered that BIND, a DNS server, hangs while constructing the additional section of a DNS reply, when certain combinations of resource records are present. This vulnerability affects both recursive and authoritative servers.
For the stable distribution (squeeze), this problem has been fixed in version 1:9.7.3.dfsg-1~squeeze8.
IMPACT:
Debian has issued an update for bind9. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).