Advisories ยป MGASA-2015-0298

Updated bind package fixes security vulnerability

Publication date: 31 Jul 2015
Modification date: 31 Jul 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-5477

Description

An error in the handling of TKEY queries can be exploited by an attacker
for use as a denial-of-service vector, as a constructed packet can use the
defect to trigger a REQUIRE assertion failure, causing BIND to exit
(CVE-2015-5477).
                

References

SRPMS

4/core

5/core