DescriptionThe resolver in ISC BIND 9 through 9.8.1-P1 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a "ghost domain names" attack.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- openSUSE-SU-2012:0863-1, published Wed, 11 Jul 2012 11:09:10 +0200 (CEST)
- openSUSE-SU-2012:0864-1, published Wed, 11 Jul 2012 11:09:21 +0200 (CEST)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE 11.4|| ||Patchnames: