Bug 842897 (CVE-2012-3817)
Summary: | CVE-2012-3817 bind: heavy DNSSEC validation load can cause assertion failure | ||||||
---|---|---|---|---|---|---|---|
Product: | [Other] Security Response | Reporter: | Vincent Danen <vdanen> | ||||
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> | ||||
Status: | CLOSED ERRATA | QA Contact: | |||||
Severity: | high | Docs Contact: | |||||
Priority: | high | ||||||
Version: | unspecified | CC: | atkac, thozza, yozone | ||||
Target Milestone: | --- | Keywords: | Security | ||||
Target Release: | --- | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
Whiteboard: | |||||||
Fixed In Version: | Doc Type: | Bug Fix | |||||
Doc Text: | Story Points: | --- | |||||
Clone Of: | Environment: | ||||||
Last Closed: | 2012-07-31 04:17:10 UTC | Type: | --- | ||||
Regression: | --- | Mount Type: | --- | ||||
Documentation: | --- | CRM: | |||||
Verified Versions: | Category: | --- | |||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||
Cloudforms Team: | --- | Target Upstream Version: | |||||
Embargoed: | |||||||
Bug Depends On: | 842900, 842909, 842910, 842911, 842912, 842914, 842915 | ||||||
Bug Blocks: | 842904 | ||||||
Attachments: |
|
Description
Vincent Danen
2012-07-24 20:57:46 UTC
Created bind tracking bugs for this issue Affects: fedora-all [bug 842900] Created attachment 600171 [details] patch to correct CVE-2012-3817 This patch is derived from a diff of 9.6-ESV-R7-P1 and -P2. There were two other things fixed in -P2, but I'm pretty certain this is all that is required to correct this flaw, but it should probably be double-checked. Just to note that bind 9.2.4 (as provided in Red Hat Enterprise Linux 4) is not affected by this issue as it does not contain the vulnerable code. This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2012:1122 https://rhn.redhat.com/errata/RHSA-2012-1122.html This issue has been addressed in following products: Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Via RHSA-2012:1123 https://rhn.redhat.com/errata/RHSA-2012-1123.html bind-9.8.3-3.P2.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report. bind-9.9.1-5.P2.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report. |