ISC BIND 多个拒绝服务漏洞

漏洞信息详情

ISC BIND 多个拒绝服务漏洞

• CNNVD编号：CNNVD-200609-024
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2006-4095
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  2006-09-05
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2006-09-06
  
• 厂        商：
  
  isc
• 漏洞来源：
  Joao Damas

BIND是一个应用非常广泛的DNS协议的实现，由ISC负责维护，具体的开发由Nominum(www.nominum.com)公司来完成。

ISC BIND的实现上存在多个拒绝服务漏洞，远程攻击者可能利用此漏洞导致BIND拒绝服务。

BIND在处理SIG查询时存在断言错误。如果返回了多于一个的SIG(covered) RRset的话，就会导致递归服务器崩溃；或者对于权威服务器，如果名称服务器服务于RFC 2535 DNSSEC区且被查询了有多个SIG(covered) RRset的SIG记录(如zone apex)，则在创建响应的时候也会触发类似的错误。

BIND在处理多个递归查询时也存在拒绝服务漏洞。如果在所有查找响应的客户端离开了递归队列后才发送查询响应的话，就会触发INSIST失败。

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

Turbolinux Turbolinux 10 F…

Turbolinux bind-utils-9.2.1-5.i586.rpm

Turbolinux 10 Desktop, Turbolinux 10 F…, Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/bind-utils-9.2.1-5.i586.rpm

OpenBSD OpenBSD 3.9

OpenBSD 010_bind.patch

ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.9/common/010_bind.patch

Turbolinux Turbolinux FUJI

Turbolinux bind-devel-9.2.5-5.i686.rpm

Turbolinux FUJI

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/

Turbolinux bind-libs-9.2.5-5.i686.rpm

Turbolinux FUJI

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/

Turbolinux bind-utils-9.2.5-5.i686.rpm

Turbolinux FUJI

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/

TurboLinux Multimedia

Turbolinux bind-utils-9.2.1-5.i586.rpm

Turbolinux 10 Desktop, Turbolinux 10 F…, Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/bind-utils-9.2.1-5.i586.rpm

Turbolinux Turbolinux Desktop 10.0

Turbolinux bind-utils-9.2.1-5.i586.rpm

Turbolinux 10 Desktop, Turbolinux 10 F…, Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/bind-utils-9.2.1-5.i586.rpm

Apple Mac OS X Server 10.3.9

Apple SecUpdSrvr2007-005Pan.dmg

http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13993&cat= 1&platform=osx&method=sa/SecUpdSrvr2007-005Pan.dmg

Apple Mac OS X 10.3.9

Apple SecUpd2007-005Pan.dmg

http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13992&cat= 1&platform=osx&method=sa/SecUpd2007-005Pan.dmg

Apple Mac OS X Server 10.4.9

Apple SecUpd2007-005Ti.dmg

http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13995&cat= 1&platform=osx&method=sa/SecUpd2007-005Ti.dmg

Apple SecUpd2007-005Univ.dmg

http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13998&cat= 1&platform=osx&method=sa/SecUpd2007-005Univ.dmg

IBM AIX 5.2 L

IBM bind9_ifix.tar.Z

APAR IY89178 for AIX 5.2.0, APAR IY89169 for AIX 5.3.0

ftp://aix.software.ibm.com/aix/efixes/security/bind9_ifix.tar.Z

FreeBSD FreeBSD 5.3

FreeBSD bind.patch

http://security.FreeBSD.org/patches/SA-06:20/bind.patch

FreeBSD bind.patch.asc

http://security.FreeBSD.org/patches/SA-06:20/bind.patch.asc

FreeBSD FreeBSD 5.4 -RELENG

FreeBSD bind.patch

http://security.FreeBSD.org/patches/SA-06:20/bind.patch

FreeBSD bind.patch.asc

http://security.FreeBSD.org/patches/SA-06:20/bind.patch.asc

FreeBSD FreeBSD 6.0 -STABLE

FreeBSD bind.patch

http://security.FreeBSD.org/patches/SA-06:20/bind.patch

FreeBSD bind.patch.asc

http://security.FreeBSD.org/patches/SA-06:20/bind.patch.asc

FreeBSD FreeBSD 6.0 -RELEASE

FreeBSD bind.patch

http://security.FreeBSD.org/patches/SA-06:20/bind.patch

FreeBSD bind.patch.asc

http://security.FreeBSD.org/patches/SA-06:20/bind.patch.asc

ISC BIND 9.3.1

ISC bind-9.3.2-P1.tar.gz

http://www.isc.org/sw/dl/?pkg=bind9/9.3.2-P1/bind-9.3.2-P1.tar.gz&name =BIND%209.3.2

Mandriva bind-9.3.1-4.1.20060mdk.i586.rpm

Mandriva Linux 2006.0:

http://wwwnew.mandriva.com/en/downloads

Mandriva bind-9.3.1-4.1.20060mdk.x86_64.rpm

Mandriva Linux 2006.0:

http://wwwnew.mandriva.com/en/downloads

Mandriva bind-devel-9.3.1-4.1.20060mdk.i586.rpm

Mandriva Linux 2006.0:

http://wwwnew.mandriva.com/en/downloads

Mandriva bind-devel-9.3.1-4.1.20060mdk.x86_64.rpm

Mandriva Linux 2006.0:

http://wwwnew.mandriva.com/en/downloads

Mandriva bind-utils-9.3.1-4.1.20060mdk.i586.rpm

Mandriva Linux 2006.0:

http://wwwnew.mandriva.com/en/downloads

Mandriva bind-utils-9.3.1-4.1.20060mdk.x86_64.rpm

Mandriva Linux 2006.0:

http://wwwnew.mandriva.com/en/downloads

OpenPKG bind-9.3.1-2.5.1

OpenPKG 2.5-RELEASE

ftp://ftp.openpkg.org/release

Slackware bind-9.3.2_P1-i486-1_slack10.2.tgz

Slackware 10.2:

ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packages/ bind-9.3.2_P1-i486-1_slack10.2.tgz

Trustix bind-9.3.2-

来源: US-CERT

名称: VU#915404

链接:http://www.kb.cert.org/vuls/id/915404

来源: MISC

链接:http://www.niscc.gov.uk/niscc/docs/re-20060905-00590.pdf?lang=en

来源: HP

名称: SSRT061239

链接:https://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00967144

来源: issues.rpath.com

链接:https://issues.rpath.com/browse/RPL-626

来源: XF

名称: bind-dnssec-rrset-dos(28745)

链接:http://xforce.iss.net/xforce/xfdb/28745

来源: DEBIAN

名称: DSA-1172

链接:http://www.us.debian.org/security/2006/dsa-1172

来源: UBUNTU

名称: USN-343-1

链接:http://www.ubuntu.com/usn/usn-343-1

来源: BID

名称: 19859

链接:http://www.securityfocus.com/bid/19859

来源: BUGTRAQ

名称: 20060908 rPSA-2006-0166-1 bind bind-utils

链接:http://www.securityfocus.com/archive/1/archive/1/445600/100/0/threaded

来源: OPENPKG

名称: OpenPKG-SA-2006.019

链接:http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.019.html

来源: OPENBSD

名称: [3.9] 20060908 010: SECURITY FIX: September 8, 2006

链接:http://www.openbsd.org/errata.html

来源: SUSE

名称: SUSE-SR:2006:024

链接:http://www.novell.com/linux/security/advisories/2006_24_sr.html

来源: SUSE

名称: SUSE-SR:2006:023

链接:http://www.novell.com/linux/security/advisories/2006_23_sr.html

来源: MANDRIVA

名称: MDKSA-2006:163

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2006:163

来源: VUPEN

名称: ADV-2007-1939

链接:http://www.frsirt.com/english/advisories/2007/1939

来源: VUPEN

名称: ADV-2007-1401

链接:http://www.frsirt.com/english/advisories/2007/1401

来源: VUPEN

名称: ADV-2006-3473

链接:http://www.frsirt.com/english/advisories/2006/3473

来源: SLACKWARE

名称: SSA:2006-257-01

链接:http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.481241

来源: SECTRACK

名称: 1016794

链接:http://securitytracker.com/id?1016794

来源: GENTOO

名称: GLSA-200609-11

链接:http://security.gentoo.org/glsa/glsa-200609-11.xml

来源: FREEBSD

名称: FreeBSD-SA-06:20.bind

链接:http://security.freebsd.org/advisories/FreeBSD-SA-06:20.bind.asc

来源: SECUNIA

名称: 25402

链接:http://secunia.com/advisories/25402

来源: SECUNIA

名称: 24950

链接:http://secunia.com/advisories/24950

来源: SECUNIA

名称: 22298

链接:http://secunia.com/advisories/22298

来源: SECUNIA

名称: 21926

链接:http://secunia.com/advisories/21926

来源: SECUNIA

名称: 21912

链接:http://secunia.com/advisories/21912

来源: SECUNIA

名称: 21838

链接:http://secunia.com/advisories/21838

来源: SECUNIA

名称: 21835

链接:http://secunia.com/advisories/21835

来源: SECUNIA

名称: 21828

链接:http://secunia.com/advisories/21828

来源: SECUNIA

名称: 21818

链接:http://secunia.com/advisories/21818

来源: SECUNIA

名称: 21816

链接:http://secunia.com/advisories/21816

来源: SECUNIA

名称: 21786

链接:http://secunia.com/advisories/21786

来源: SECUNIA

名称: 21752

链接:http://secunia.com/advisories/21752

来源: APPLE

名称: APPLE-SA-2007-05-24

链接:http://lists.apple.com/archives/security-announce/2007/May/msg00004.html

来源: MANDRIVA

名称: MDKSA-2006:163

链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:163

来源: docs.info.apple.com

链接:http://docs.info.apple.com/article.html?artnum=305530