Vulnerability in bind May Cause Remote Code Execution (2.2)
http://www.isc.org/software/bind/advisories/cve-2011-tbd
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313
The exact detail of the vulnerability are unknown and it is currently exploited in wild (0-day).
Solutions:
- No definitive patch available atm. Current patches are just a workarounds to mitigate the issue. See ISC page for download.
(from redmine: issue id 821, created on 2011-11-17, closed on 2011-11-22)
- Relations:
- relates #820 (closed)
- relates #819 (closed)
- Changesets:
- Revision dd33af68 by Natanael Copa on 2011-11-18T15:15:26Z:
main/bind: security upgrade to 9.8.1_p1 (CVE-4313)
fixes #821
(cherry picked from commit 6a159eecd21bcaf2262e2e28868a5d3674f055fc)