Debian DSA-2517-1 : bind9 - denial of service
High Nessus Plugin ID 60156
SynopsisThe remote Debian host is missing a security-related update.
DescriptionEinar Lonn discovered that under certain conditions bind9, a DNS server, may use cached data before initialization. As a result, an attacker can trigger an assertion failure on servers under high query load that do DNSSEC validation.
SolutionUpgrade the bind9 packages.
For the stable distribution (squeeze), this problem has been fixed in version 1:9.7.3.dfsg-1~squeeze6.