Vulnerability in bind May Cause Remote Code Execution (2.1)
http://www.isc.org/software/bind/advisories/cve-2011-tbd
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313
The exact detail of the vulnerability are unknown and it is currently exploited in wild (0-day).
Solutions:
- No definitive patch available atm. Current patches are just a workarounds to mitigate the issue. See ISC page for download.
(from redmine: issue id 822, created on 2011-11-17, closed on 2011-11-22)
- Relations:
- relates #820 (closed)
- relates #819 (closed)
- Changesets:
- Revision 4e84b110 by Natanael Copa on 2011-11-18T15:19:32Z:
main/bind: security upgrade to 9.7.4_p1 (CVE-2011-4313)
fixes #822