CVE-2012-1033

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-1033 at MITRE

Description

The resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.

NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)

SUSE information

SUSE Bugzilla entry: 746074

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.4
  • bind >= 9.7.6P1-0.31.1
  • bind-chrootenv >= 9.7.6P1-0.31.1
  • bind-debuginfo >= 9.7.6P1-0.31.1
  • bind-debugsource >= 9.7.6P1-0.31.1
  • bind-devel >= 9.7.6P1-0.31.1
  • bind-doc >= 9.7.6P1-0.31.1
  • bind-libs >= 9.7.6P1-0.31.1
  • bind-libs-32bit >= 9.7.6P1-0.31.1
  • bind-libs-debuginfo >= 9.7.6P1-0.31.1
  • bind-libs-debuginfo-32bit >= 9.7.6P1-0.31.1
  • bind-libs-debuginfo-x86 >= 9.7.6P1-0.31.1
  • bind-libs-debuginfo-x86-debuginfo >= 9.7.6P1-0.31.1
  • bind-libs-x86 >= 9.7.6P1-0.31.1
  • bind-lwresd >= 9.7.6P1-0.31.1
  • bind-lwresd-debuginfo >= 9.7.6P1-0.31.1
  • bind-utils >= 9.7.6P1-0.31.1
  • bind-utils-debuginfo >= 9.7.6P1-0.31.1
Patchnames:
openSUSE-2012-383