Scientific Linux Security Update : bind on SL3.x, SL4.x, SL5.x i386/x86_64
Medium Nessus Plugin ID 60517
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA flaw was discovered in the way BIND checked the return value of the OpenSSL DSA_do_verify function. On systems using DNSSEC, a malicious zone could present a malformed DSA certificate and bypass proper certificate validation, allowing spoofing attacks. (CVE-2009-0025)
For users of Red Hat Enterprise Linux 3 this update also addresses a bug which can cause BIND to occasionally exit with an assertion failure.
After installing theupdate, BIND daemon will be restarted automatically.
SolutionUpdate the affected packages.