New Search

RHSA-2009:0020 -- bind security update (Moderate)

oval:org.mitre.oval:def:28987

Updated Bind packages to correct a security issue are now available for Red Hat Enterprise Linux 2.1 3 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. A flaw was discovered in the way BIND checked the return value of the OpenSSL DSA_do_verify function. On systems using DNSSEC a malicious zone could present a malformed DSA certificate and bypass proper certificate validation allowing spoofing attacks. (CVE-2009-0025)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 4
  • CentOS Linux 3
  • Red Hat Enterprise Linux 3
  • Red Hat Enterprise Linux 5
  • CentOS Linux 5
  • CentOS Linux 2
Class:
patch
Reference(s):
  • RHSA-2009:0020
  • CESA-2009:0020-CentOS 5
  • CESA-2009:0020-CentOS 2
  • CESA-2009:0020-CentOS 3
  • CVE-2009-0025
Product(s):
  • bind