FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Multiple Denial of Service vulnerabilities with named(8)

Affected packages
7.4 <= FreeBSD < 7.4_11
8.3 <= FreeBSD < 8.3_5
9.0 <= FreeBSD < 9.0_5

Details

VuXML ID 4b79538b-a450-11e2-9898-001060e06fd4
Discovery 2012-11-22
Entry 2012-11-24

Problem description:

The BIND daemon would crash when a query is made on a resource record with RDATA that exceeds 65535 bytes.

The BIND daemon would lock up when a query is made on specific combinations of RDATA.

[source]

References

CVE Name CVE-2012-4244
CVE Name CVE-2012-5166
FreeBSD Advisory SA-12:06.bind

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.