Skip to Content.
Sympa Menu

discuss - [opennic-discuss] Fwd: [SECURITY] [DSA 3795-1] bind9 security update

discuss AT

Subject: Discuss mailing list

List archive

[opennic-discuss] Fwd: [SECURITY] [DSA 3795-1] bind9 security update

Chronological Thread 
  • From: Fusl Dash <opennic AT>
  • To: "discuss AT" <discuss AT>
  • Subject: [opennic-discuss] Fwd: [SECURITY] [DSA 3795-1] bind9 security update
  • Date: Sun, 26 Feb 2017 04:36:30 +0100

-------- Forwarded Message --------
Subject: [SECURITY] [DSA 3795-1] bind9 security update
Resent-Date: Sun, 26 Feb 2017 02:43:20 +0000 (UTC)
Resent-From: debian-security-announce AT
Date: Sun, 26 Feb 2017 02:45:32 +0000
From: Michael Gilbert <mgilbert AT>
Reply-To: debian-security-announce-request AT
To: debian-security-announce AT

Debian Security Advisory DSA-3795-1 security AT Michael Gilbert
February 26, 2017

Package : bind9
CVE ID : CVE-2017-3135
Debian Bug : 855520

It was discovered that a maliciously crafted query can cause ISC's
BIND DNS server (named) to crash if both Response Policy Zones (RPZ)
and DNS64 (a bridge between IPv4 and IPv6 networks) are enabled. It
is uncommon for both of these options to be used in combination, so
very few systems will be affected by this problem in practice.

This update also corrects an additional regression caused by the fix
for CVE-2016-8864, which was applied in a previous security update.

For the stable distribution (jessie), this problem has been fixed in
version 1:9.9.5.dfsg-9+deb8u10.

For the testing (stretch) and unstable (sid) distributions, this
problem has been fixed in version 1:9.10.3.dfsg.P4-12.

We recommend that you upgrade your bind9 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at:

Mailing list: debian-security-announce AT

Attachment: signature.asc
Description: OpenPGP digital signature

  • [opennic-discuss] Fwd: [SECURITY] [DSA 3795-1] bind9 security update, Fusl Dash, 02/26/2017

Archive powered by MHonArc 2.6.19.

Top of Page