FreeBSD : dns/bind9* -- Several vulnerabilities (53a0ddef-0208-11e2-8afa-0024e830109b)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

ISC reports :

Prevents a crash when queried for a record whose RDATA exceeds 65535
bytes.

Prevents a crash when validating caused by using 'Bad cache' data
before it has been initialized.

ISC_QUEUE handling for recursive clients was updated to address a race
condition that could cause a memory leak. This rarely occurred with
UDP clients, but could be a significant problem for a server handling
a steady rate of TCP queries.

A condition has been corrected where improper handling of zero-length
RDATA could cause undesirable behavior, including termination of the
named process.

See also :

http://www.nessus.org/u?6234e82a

Solution :

Update the affected packages.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 62194 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now