English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 --------------------------------------------------------------------------
   Turbolinux Security Advisory TLSA-2007-9
   http://www.turbolinux.co.jp/security/
                                             security-team@turbolinux.co.jp
 --------------------------------------------------------------------------

 Original released date: 28 Feb 2007
 Last revised: 28 Feb 2007

 Package: bind

 Summary: bind denial of service attack

 More information:
    Bind includes the named name server, which resolves host names to IP
    addresses (and vice versa), and a resolver library (a set of routines
    in a system library that provide the interface for programs to use when
    accessing domain name services). 

    Bind may allow remote attackers to cause a denial of service via a type * (ANY)
    DNS query response that contains multiple RRsets, which triggers an assertion error,
    aka the "DNSSEC Validation" vulnerability.

 Impact:
    The bind allows remote attackers to cause a denial of service.

 Affected Products:
    - Turbolinux Appliance Server 2.0
    - Turbolinux FUJI
    - Turbolinux 10 Server x64 Edition
    - Turbolinux Appliance Server 1.0 Hosting Edition
    - Turbolinux Appliance Server 1.0 Workgroup Edition
    - Turbolinux 10 Server
    - Turbolinux Home
    - Turbolinux 10 F...
    - Turbolinux 10 Desktop
    - Turbolinux Multimedia
    - Turbolinux Personal
    - Turbolinux 8 Server


 <Turbolinux Appliance Server 2.0>

   Source Packages
   Size: MD5

   bind-9.2.3-10.src.rpm
      3525210 f71da19572a365fb72ca436d47c0fca8

   Binary Packages
   Size: MD5

   bind-9.2.3-10.i586.rpm
       371132 6465a5bfbfafd01662290066af45be95
   bind-chroot-9.2.3-10.i586.rpm
         9295 397ea6d24b9ba648c7ceace35bff1279
   bind-libs-9.2.3-10.i586.rpm
       411944 c19656036be280260ef894aea4f1ce5b
   bind-utils-9.2.3-10.i586.rpm
        96407 0c4a3872100320c00899d5db0ed41b71

 <Turbolinux FUJI>

   Source Packages
   Size: MD5

   bind-9.2.5-6.src.rpm
      4505553 b075ca2c09db1ea934346e53aa46e1b5

   Binary Packages
   Size: MD5

   bind-devel-9.2.5-6.i686.rpm
      2196490 f1442b4c1bffcfde0f7053b455b96502
   bind-libs-9.2.5-6.i686.rpm
       485238 745d2c6252b1041a87a077a33f89adb5
   bind-utils-9.2.5-6.i686.rpm
       125802 fa2910086b5caa22f7ed33bec7faa29b

 <Turbolinux 10 Server x64 Edition>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/SRPMS/bind-9.2.3-10.src.rpm
      3525210 30a7af3464bb52d1b83c9cc97aa75115

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/bind-9.2.3-10.x86_64.rpm
       398055 43e72dfa3eda615c675bf525257366ff
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/bind-chroot-9.2.3-10.x86_64.rpm
         9222 94ef65a886ec6ffad3bc41a829bc49c4
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/bind-libs-9.2.3-10.x86_64.rpm
       514910 c1b5a3edbe7b8267dfd07728c6654c6b
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/updates/RPMS/bind-utils-9.2.3-10.x86_64.rpm
       107814 26d3298fe7353ba67a7bf12fae569165

 <Turbolinux Appliance Server 1.0 Hosting Edition>

   Source Packages
   Size: MD5

   bind-9.2.1-6.src.rpm
      4969837 cd0439793db489706cdb53effad253b1

   Binary Packages
   Size: MD5

   bind-9.2.1-6.i586.rpm
      2744781 84d6343d8050aad4b8ed046a1c8bf945
   bind-devel-9.2.1-6.i586.rpm
       723804 e7de6a937172cf70d05e293934052e52
   bind-utils-9.2.1-6.i586.rpm
      1702508 af85d78e0aa589df098de7aaf6154cb1

 <Turbolinux Appliance Server 1.0 Workgroup Edition>

   Source Packages
   Size: MD5

   bind-9.2.1-6.src.rpm
      4969837 39f5bcd2196bfd992bea257aa669632c

   Binary Packages
   Size: MD5

   bind-9.2.1-6.i586.rpm
      2744544 0894b097f568e463919b9108b3fdc82d
   bind-devel-9.2.1-6.i586.rpm
       724022 ea0d926a9b7164e67eced04a49767e81
   bind-utils-9.2.1-6.i586.rpm
      1702616 f39af434238da17ca98ea972fdef9805

 <Turbolinux 10 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/10/updates/SRPMS/bind-9.2.3-10.src.rpm
      3525210 f71da19572a365fb72ca436d47c0fca8

   Binary Packages
   Size: MD5

   bind-9.2.3-10.i586.rpm
       371132 6465a5bfbfafd01662290066af45be95
   bind-chroot-9.2.3-10.i586.rpm
         9295 397ea6d24b9ba648c7ceace35bff1279
   bind-libs-9.2.3-10.i586.rpm
       411944 c19656036be280260ef894aea4f1ce5b
   bind-utils-9.2.3-10.i586.rpm
        96407 0c4a3872100320c00899d5db0ed41b71

 <Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/SRPMS/bind-9.2.1-6.src.rpm
      4969837 1496306b1ded4396b6238ff7c99f19a5

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/updates/RPMS/bind-utils-9.2.1-6.i586.rpm
      1680220 1b9ee40d64ba58d8bf2943a9ded79037

 <Turbolinux 8 Server>

   Source Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/SRPMS/bind-9.2.1-6.src.rpm
      4969837 5a1d994368a3b74d660ab8b3f7749b12

   Binary Packages
   Size: MD5

   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/bind-9.2.1-6.i586.rpm
      2744106 58fc423a191b1e0bda9bcfeb17d7dddf
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/bind-devel-9.2.1-6.i586.rpm
       724143 b71b585624132e590a8fe079eba2341c
   ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/updates/RPMS/bind-utils-9.2.1-6.i586.rpm
      1702428 127663f4c956eae185ac9a7a01b47a63


 References:

 CVE
   [CVE-2007-0494]
   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0494

 --------------------------------------------------------------------------
 Revision History
    28 Feb 2007 Initial release
 --------------------------------------------------------------------------

 Copyright(C) 2007 Turbolinux, Inc. All rights reserved. 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFF5SbaK0LzjOqIJMwRAix9AJ9FtG9j5rqf/OADcxpWSPoqWQA0jwCgueIn
AeBGQisA6WM43GDlXDPgAoA=
=DSlD
-----END PGP SIGNATURE-----



© 1998-2025 E-Soft Inc. All rights reserved.