A flaw in ISC BIND was reported [1] where a nameserver could be caused to exit with a REQUIRE exception if it received a specially crafted resource record with RDATA that exceeded 65535 bytes and then received a subsequent query for that record. This can be exploited remotely against recursive servers by getting them to query for records provided by an authoritative server. It also affects authoritative servers if a zone containing this kind of resource record is loaded from a file on disk or via a zone transfer. [1] https://kb.isc.org/article/AA-00778/74
Created attachment 612201 [details] diff of bind-9.6-ESV-R7-P2 to P3 --- 9.6-ESV-R7-P3 released --- 3364. [security] Named could die on specially crafted record. [RT #30416] 3358 [bug] Fix declaration of fatal in bin/named/server.c and bin/nsupdate/main.c. [RT #30522] (I didn't pull out the irrelevant changes as I suspect they may be used by the pertinent changes)
Created bind tracking bugs for this issue Affects: fedora-all [bug 856756]
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2012:1268 https://rhn.redhat.com/errata/RHSA-2012-1268.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2012:1267 https://rhn.redhat.com/errata/RHSA-2012-1267.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Via RHSA-2012:1266 https://rhn.redhat.com/errata/RHSA-2012-1266.html
bind-9.9.1-9.P3.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
bind-9.9.1-10.P3.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.
bind-9.8.3-4.P3.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Extended Lifecycle Support Via RHSA-2012:1365 https://rhn.redhat.com/errata/RHSA-2012-1365.html