[v3.1] bind: when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (CVE-2015-1349)
named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when DNSSEC validation and the managed-keys feature are enabled, allows remote attackers to cause a denial of service (assertion failure and daemon exit, or daemon crash) by triggering an incorrect trust-anchor management scenario in which no key is ready for use.
Reference:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1349
(from redmine: issue id 4362, created on 2015-06-15, closed on 2015-06-16)
- Relations:
- parent #4361 (closed)
- Changesets:
- Revision 5c430e80 by Natanael Copa on 2015-06-15T13:13:40Z:
main/bind: security upgrade to 9.10.1_p2 (CVE-2015-1349)
fixes #4362