Updated bind package fixes security vulnerability
Publication date: 31 Jul 2015Modification date: 31 Jul 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-5477
Description
An error in the handling of TKEY queries can be exploited by an attacker for use as a denial-of-service vector, as a constructed packet can use the defect to trigger a REQUIRE assertion failure, causing BIND to exit (CVE-2015-5477).
References
SRPMS
4/core
- bind-9.9.7.P2-1.mga4
5/core
- bind-9.10.2.P3-1.mga5