[LACNIC/Seguridad] Fwd: [dns-operations] Update: BIND 9 recursive error being investigated

Carlos Martinez-Cagnazzo carlosm3011 en gmail.com
Mie Nov 16 11:15:47 BRST 2011

Para estar atentos: revisen si estan viendo crashes en sus BIND9's



---------- Forwarded message ----------
From: Barry Greene <bgreene en senki.org>
Date: Wed, Nov 16, 2011 at 8:29 AM
Subject: [dns-operations] Update: BIND 9 recursive error being investigated
To: dns-operations en mail.dns-oarc.net

Interm Security Advisory:
http://www.isc.org/software/bind/advisories/cve-2011-tbd (CVE will be

Organizations across the Internet are reporting crashes interrupting
service on BIND 9 nameservers performing recursive queries. Affected
servers crash after logging an error in query.c with the following
message: "INSIST(! dns_rdataset_isassociated(sigrdataset))"

Multiple versions are reported as being affected, including all
currently supported release versions of ISC BIND 9.

ISC is actively investigating the root cause and working to produce
patches which avoid the crash. Further information will be made
available soon (see the advisory

It is unknown at this time if this is an exploited attack. This is
under investigation.

Questions, observations, and data is welcomed. Please send to
security-officer en isc.org.

dns-operations mailing list
dns-operations en lists.dns-oarc.net
dns-jobs mailing list

Carlos M. Martinez-Cagnazzo

Más información sobre la lista de distribución Seguridad