View my documents ()
 Home > Support > Global Security Advisor 

Vulnerability Detail

ISC BIND transaction signature (TSIG) buffer overflow vulnerability

Date Discovered:
28 Jan 2001

Date Published:
4 Oct 2001

Last Updated:
4 Jan 2008

Threat Assessment

Overall Risk:  High
Popularity : Critical
Impact:  Critical
Simplicity:  Low

Characteristics

Vulnerability ID:  3355
Discovered By:  Covert labs

Exploitable Locally:  No
Exploitable Remotely:  Yes

Impact:  Remote attackers can gain privileged access.

Root Cause:  Software Vulnerability

Description
Recommendations
Affected Technologies
References
 

Description

ISC BIND is vulnerable to a flaw that allows a remote attacker to execute arbitrary code. The problem is due to how invalid transaction signatures (TSIG) are processed. An attacker can make a special request that will cause a buffer overflow and allow the execution of arbitrary commands.

Back to top

Recommendations

Upgrade with the latest BIND available.



ISC BIND:



Version 9.1 and 8.2.3 addressed the vulnerability.



http://www.isc.org/products/BIND/



Vendor advisory:



http://www.isc.org/products/BIND/bind-security.html



Conectiva:

ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/bind-chroot-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/bind-chroot-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/bind-chroot-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-utils-8.2.3-1cl.i386.rpm



Red Hat Linux 5.2:



source:

ftp://updates.redhat.com/5.2/SRPMS/bind-8.2.3-0.5.x.src.rpm



alpha:

ftp://updates.redhat.com/5.2/alpha/bind-8.2.3-0.5.x.alpha.rpm

ftp://updates.redhat.com/5.2/alpha/bind-devel-8.2.3-0.5.x.alpha.rpm

ftp://updates.redhat.com/5.2/alpha/bind-utils-8.2.3-0.5.x.alpha.rpm



i386:

ftp://updates.redhat.com/5.2/i386/bind-8.2.3-0.5.x.i386.rpm

ftp://updates.redhat.com/5.2/i386/bind-devel-8.2.3-0.5.x.i386.rpm

ftp://updates.redhat.com/5.2/i386/bind-utils-8.2.3-0.5.x.i386.rpm



SPARC:

ftp://updates.redhat.com/5.2/sparc/bind-8.2.3-0.5.x.sparc.rpm

ftp://updates.redhat.com/5.2/sparc/bind-devel-8.2.3-0.5.x.sparc.rpm

ftp://updates.redhat.com/5.2/sparc/bind-utils-8.2.3-0.5.x.sparc.rpm



Red Hat Linux 6.2:



source:

ftp://updates.redhat.com/6.2/SRPMS/bind-8.2.3-0.6.x.src.rpm



alpha:

ftp://updates.redhat.com/6.2/alpha/bind-8.2.3-0.6.x.alpha.rpm

ftp://updates.redhat.com/6.2/alpha/bind-devel-8.2.3-0.6.x.alpha.rpm

ftp://updates.redhat.com/6.2/alpha/bind-utils-8.2.3-0.6.x.alpha.rpm



i386:

ftp://updates.redhat.com/6.2/i386/bind-8.2.3-0.6.x.i386.rpm

ftp://updates.redhat.com/6.2/i386/bind-devel-8.2.3-0.6.x.i386.rpm

ftp://updates.redhat.com/6.2/i386/bind-utils-8.2.3-0.6.x.i386.rpm



SPARC:

ftp://updates.redhat.com/6.2/sparc/bind-8.2.3-0.6.x.sparc.rpm

ftp://updates.redhat.com/6.2/sparc/bind-devel-8.2.3-0.6.x.sparc.rpm

ftp://updates.redhat.com/6.2/sparc/bind-utils-8.2.3-0.6.x.sparc.rpm



Red Hat Linux 7.0:



source:

ftp://updates.redhat.com/7.0/SRPMS/bind-8.2.3-1.src.rpm



alpha:

ftp://updates.redhat.com/7.0/alpha/bind-8.2.3-1.alpha.rpm

ftp://updates.redhat.com/7.0/alpha/bind-devel-8.2.3-1.alpha.rpm

ftp://updates.redhat.com/7.0/alpha/bind-utils-8.2.3-1.alpha.rpm



i386:

ftp://updates.redhat.com/7.0/i386/bind-8.2.3-1.i386.rpm

ftp://updates.redhat.com/7.0/i386/bind-devel-8.2.3-1.i386.rpm

ftp://updates.redhat.com/7.0/i386/bind-utils-8.2.3-1.i386.rpm



IBM AIX:

Versions prior to 4.3 will not have a fix issued.



AIX 4.3.3:

APAR IY16182



A temporary fix is available and is located at:

ftp://aix.software.ibm.com/aix/efixes/security/multiple_bind_vulns_efix.tar.Z



Follow the vendor recommend installation stated in the below advisory.



Vendor advisory:



ERS-SVA-E01-2001:002.1



Caldera OpenLinux 2.3:



ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/bind-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/bind-doc-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/bind-utils-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/SRPMS/bind-8.2.3-1.src.rpm



Caldera OpenLinux eServer 2.3.1 and OpenLinux eBuilder for ECential 3.0:



ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/bind-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/bind-doc-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/bind-utils-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/SRPMS/bind-8.2.3-1.src.rpm



OpenLinux eDesktop 2.4:



ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/bind-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/bind-doc-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/bind-utils-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/SRPMS/bind-8.2.3-1.src.rpm



Compaq Tru64 5.1:

SSRT1-66U_v5_1.tar



Compaq Tru64 5.0:

SSRT1-68U_v5_0.tar



Compaq Tru64 5.0a:

SSRT1-68U_v5_0a.tar



Vendor advisory:



Compaq case IDs SSRT1-66U and SSRT1-68U





TurboLinux 6.1 WorkStation:



ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-8.2.3-2.i386.rpm

ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-contrib-8.2.3-2.i386.rpm

ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-devel-8.2.3-2.i386.rpm

ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-utils-8.2.3-2.i386.rpm



Follow the vendor recommend installation stated in the below advisory.



Vendor advisory:



http://marc.theaimsgroup.com/?l=bugtraq&m=98289348031030&w=2



IRIX 6.5-6.5.11:



patch 4193



Vendor Advisory:



SGI Security Advisory 20010401-01-P



Fujitsu:



V20L10 PTF Level X01081:

Apply PTF when available.



V20L10 PTF Level X00091, X01021:

Apply PUF UX28138 when available.



V10L20 PTF Level X02071:

Apply PTF when available.



V10L20 PTF Level X01041:

Apply PUF UX15516 when available.





http://primepower.fujitsu.com/hpc/en/topics/cert/top/index-e.html



SCO OpenServer:



ftp://ftp.sco.com/pub/security/openserver/sr379322/newbind.tar.Z



Vendor advisory:

CSSA-2001-SCO.13



UnixWare 7.1.1:

ftp://stage.caldera.com/pub/security/unixware/CSSA-2002-SCO.16ptf7705a.pkg.Z



Vendor advisory:

CSSA-2002-SCO.16



Solaris 2.5.1:

103663-16 or later



Solaris 2.6:

105755-10 or later



Solaris 8:

109326-04 or later



Solaris 2.5.1 x86:

103664-16 or later



Solaris 2.6 x86:

105756-10 or later



Solaris 8 x86:

109327-04 or later



Vendor advisory:

Sun Alert ID: 26965Upgrade with the latest BIND available.



ISC BIND:



Version 9.1 and 8.2.3 addressed the vulnerability.



http://www.isc.org/products/BIND/



Vendor advisory:



http://www.isc.org/products/BIND/bind-security.html



Conectiva:

ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.0es/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.1/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/4.2/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/bind-chroot-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.0/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/bind-chroot-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/5.1/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/6.0/SRPMS/bind-chroot-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/6.0/RPMS/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/bind-utils-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/bind-8.2.3-1cl.src.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-chroot-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-devel-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-devel-static-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-doc-8.2.3-1cl.i386.rpm

ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/bind-utils-8.2.3-1cl.i386.rpm



Red Hat Linux 5.2:



source:

ftp://updates.redhat.com/5.2/SRPMS/bind-8.2.3-0.5.x.src.rpm



alpha:

ftp://updates.redhat.com/5.2/alpha/bind-8.2.3-0.5.x.alpha.rpm

ftp://updates.redhat.com/5.2/alpha/bind-devel-8.2.3-0.5.x.alpha.rpm

ftp://updates.redhat.com/5.2/alpha/bind-utils-8.2.3-0.5.x.alpha.rpm



i386:

ftp://updates.redhat.com/5.2/i386/bind-8.2.3-0.5.x.i386.rpm

ftp://updates.redhat.com/5.2/i386/bind-devel-8.2.3-0.5.x.i386.rpm

ftp://updates.redhat.com/5.2/i386/bind-utils-8.2.3-0.5.x.i386.rpm



SPARC:

ftp://updates.redhat.com/5.2/sparc/bind-8.2.3-0.5.x.sparc.rpm

ftp://updates.redhat.com/5.2/sparc/bind-devel-8.2.3-0.5.x.sparc.rpm

ftp://updates.redhat.com/5.2/sparc/bind-utils-8.2.3-0.5.x.sparc.rpm



Red Hat Linux 6.2:



source:

ftp://updates.redhat.com/6.2/SRPMS/bind-8.2.3-0.6.x.src.rpm



alpha:

ftp://updates.redhat.com/6.2/alpha/bind-8.2.3-0.6.x.alpha.rpm

ftp://updates.redhat.com/6.2/alpha/bind-devel-8.2.3-0.6.x.alpha.rpm

ftp://updates.redhat.com/6.2/alpha/bind-utils-8.2.3-0.6.x.alpha.rpm



i386:

ftp://updates.redhat.com/6.2/i386/bind-8.2.3-0.6.x.i386.rpm

ftp://updates.redhat.com/6.2/i386/bind-devel-8.2.3-0.6.x.i386.rpm

ftp://updates.redhat.com/6.2/i386/bind-utils-8.2.3-0.6.x.i386.rpm



SPARC:

ftp://updates.redhat.com/6.2/sparc/bind-8.2.3-0.6.x.sparc.rpm

ftp://updates.redhat.com/6.2/sparc/bind-devel-8.2.3-0.6.x.sparc.rpm

ftp://updates.redhat.com/6.2/sparc/bind-utils-8.2.3-0.6.x.sparc.rpm



Red Hat Linux 7.0:



source:

ftp://updates.redhat.com/7.0/SRPMS/bind-8.2.3-1.src.rpm



alpha:

ftp://updates.redhat.com/7.0/alpha/bind-8.2.3-1.alpha.rpm

ftp://updates.redhat.com/7.0/alpha/bind-devel-8.2.3-1.alpha.rpm

ftp://updates.redhat.com/7.0/alpha/bind-utils-8.2.3-1.alpha.rpm



i386:

ftp://updates.redhat.com/7.0/i386/bind-8.2.3-1.i386.rpm

ftp://updates.redhat.com/7.0/i386/bind-devel-8.2.3-1.i386.rpm

ftp://updates.redhat.com/7.0/i386/bind-utils-8.2.3-1.i386.rpm



IBM AIX:

Versions prior to 4.3 will not have a fix issued.



AIX 4.3.3:

APAR IY16182



A temporary fix is available and is located at:

ftp://aix.software.ibm.com/aix/efixes/security/multiple_bind_vulns_efix.tar.Z



Follow the vendor recommend installation stated in the below advisory.



Vendor advisory:



ERS-SVA-E01-2001:002.1



Caldera OpenLinux 2.3:



ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/bind-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/bind-doc-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/bind-utils-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/SRPMS/bind-8.2.3-1.src.rpm



Caldera OpenLinux eServer 2.3.1 and OpenLinux eBuilder for ECential 3.0:



ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/bind-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/bind-doc-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/bind-utils-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/SRPMS/bind-8.2.3-1.src.rpm



OpenLinux eDesktop 2.4:



ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/bind-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/bind-doc-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/bind-utils-8.2.3-1.i386.rpm

ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/SRPMS/bind-8.2.3-1.src.rpm



Compaq Tru64 5.1:

SSRT1-66U_v5_1.tar



Compaq Tru64 5.0:

SSRT1-68U_v5_0.tar



Compaq Tru64 5.0a:

SSRT1-68U_v5_0a.tar



Vendor advisory:



Compaq case IDs SSRT1-66U and SSRT1-68U





TurboLinux 6.1 WorkStation:



ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-8.2.3-2.i386.rpm

ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-contrib-8.2.3-2.i386.rpm

ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-devel-8.2.3-2.i386.rpm

ftp://ftp.turbolinux.com/pub/updates/6.0/security/bind-utils-8.2.3-2.i386.rpm



Follow the vendor recommend installation stated in the below advisory.



Vendor advisory:



http://marc.theaimsgroup.com/?l=bugtraq&m=98289348031030&w=2



IRIX 6.5-6.5.11:



patch 4193



Vendor Advisory:



SGI Security Advisory 20010401-01-P



Fujitsu:



V20L10 PTF Level X01081:

Apply PTF when available.



V20L10 PTF Level X00091, X01021:

Apply PUF UX28138 when available.



V10L20 PTF Level X02071:

Apply PTF when available.



V10L20 PTF Level X01041:

Apply PUF UX15516 when available.





http://primepower.fujitsu.com/hpc/en/topics/cert/top/index-e.html



SCO OpenServer:



ftp://ftp.sco.com/pub/security/openserver/sr379322/newbind.tar.Z



Vendor advisory:

CSSA-2001-SCO.13



UnixWare 7.1.1:

ftp://stage.caldera.com/pub/security/unixware/CSSA-2002-SCO.16ptf7705a.pkg.Z



Vendor advisory:

CSSA-2002-SCO.16



Solaris 2.5.1:

103663-16 or later



Solaris 2.6:

105755-10 or later



Solaris 8:

109326-04 or later



Solaris 2.5.1 x86:

103664-16 or later



Solaris 2.6 x86:

105756-10 or later



Solaris 8 x86:

109327-04 or later



Vendor advisory:

Sun Alert ID: 26965



-------------------------------------------------------------------------------
For: Red Hat Linux 6.2
Apply: RHSA-2001:007-03 - Red Hat Linux 6.2

-------------------------------------------------------------------------------
For: Solaris 8 x86
Apply: Solaris 8 x86 - 109327-[04-99]

Please download and install the patch 109327-04 or later.

-------------------------------------------------------------------------------
For: Solaris 8 SPARC
Apply: Solaris 8 SPARC - 109326-[04-99]

Please download and install the patch 109326-04 or later.

-------------------------------------------------------------------------------
For: Solaris 2.6_x86
Apply: Solaris 2.6 - 105756-10

-------------------------------------------------------------------------------
For: Solaris 2.6
Apply: Solaris 2.6 - 105755-10

Back to top

Affected Technologies

Caldera: Caldera Linux 2.3
Caldera: OpenLinux eDesktop 2.4
Caldera: OpenLinux eServer 2.3.1
Compaq: Tru64 5.0
Compaq: Tru64 5.0a
Compaq: Tru64 5.1
CONECTIVA SA: Conectiva Linux 4.0
CONECTIVA SA: Conectiva Linux 4.1
CONECTIVA SA: Conectiva Linux 4.2
CONECTIVA SA: Conectiva Linux 5.0
CONECTIVA SA: Conectiva Linux 6.0
CONECTIVA SA: Conectiva Linux prg graficos
DEC: Digital Unix 5.0
DEC: Digital Unix 5.1
Fujitsu: Fujitsu UXP/V V10L20
Fujitsu: Fujitsu UXP/V V20L10
IBM: AIX 3
IBM: AIX 3.1
IBM: AIX 3.2
IBM: AIX 3.20
IBM: AIX 3.24
IBM: AIX 3.25
IBM: AIX 4.0
IBM: AIX 4.1.4
IBM: AIX 4.2
IBM: AIX 4.2.
IBM: AIX 4.2.1
IBM: AIX 4.3.1
IBM: AIX 4.3.2
IBM: AIX 4.3.3
Internet Software Consortium : Bind 8.2
Internet Software Consortium : Bind 8.2-P1
Internet Software Consortium : Bind 8.2.1
Internet Software Consortium : Bind 8.2.2
Internet Software Consortium : Bind 8.2.2 p5
Internet Software Consortium : Bind 8.2.2-P1
Internet Software Consortium : Bind 8.2.2-P2
Internet Software Consortium : Bind 8.2.2-P3
Internet Software Consortium : Bind 8.2.2-P4
Internet Software Consortium : Bind 8.2.2-P5
Internet Software Consortium : Bind 8.2p1
Red Hat: Red Hat Linux 5.2
Red Hat: Red Hat Linux 6.2
Santa Cruz Operation, Inc.: SCO OpenServer 5.0.0
Santa Cruz Operation, Inc.: SCO OpenServer 5.0.2
Santa Cruz Operation, Inc.: SCO OpenServer 5.0.4
Santa Cruz Operation, Inc.: SCO OpenServer 5.0.6
Santa Cruz Operation, Inc.: SCO OpenServer 5.0.6a
Santa Cruz Operation, Inc.: Unixware 7.1.1
Sun: Solaris 2.5.1
Sun: Solaris 2.5.1_x86
Sun: Solaris 2.6
Sun: Solaris 2.6_x86
Sun: Solaris 8 SPARC
Sun: Solaris 8 x86
Turbolinux Inc.: TurboLinux 1.2
Turbolinux Inc.: TurboLinux 2.0
Turbolinux Inc.: TurboLinux 3
Turbolinux Inc.: TurboLinux 3.5b2
Turbolinux Inc.: TurboLinux 4.2
Turbolinux Inc.: TurboLinux 4.4
Turbolinux Inc.: TurboLinux 6.0
Turbolinux Inc.: TurboLinux 6.0.1

Back to top

References

CERT: CA-2001-02
Mitre CVE: CVE-2001-0010
SUN: #00204
SUN: Sun Alert ID: 26965

Back to top

CA Global Security Advisor

Current threat condition: Low
Low
Documents and Tools
Find Threats
Viruses Spyware
Vulnerabilities All
 
 
Page Tools
ShareShare