[SingCERT] ISC BIND Denial-of-Service Vulnerability

[ Summary ]

A vulnerability has been reported in BIND, which can be exploited to cause a Denial-of-Service condition.

[ Affected Systems ]

Multiple versions of BIND were affected:

• 9.4-ESV (all)
• 9.6-ESV (all)
• 9.7 (all)
• 9.8 (all)

[ Impact Analysis ]

An attacker can cause the service to crash.

[ Solution/Workaround ]

Patches are available:

• 9.4-ESV-R5-P1
• 9.6-ESV-R5-P1
• 9.7.4-P1
• 9.8.1-P1

[ Reference ]

• http://www.isc.org/software/bind/advisories/cve-2011-4313