Mandriva Linux Security Advisory : bind (MDVSA-2013:058)
High Nessus Plugin ID 66072
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA security issue was identified and fixed in ISC BIND :
libdns in ISC BIND 9.7.x and 9.8.x before 9.8.4-P2, 9.8.5 before 9.8.5b2, 9.9.x before 9.9.2-P2, and 9.9.3 before 9.9.3b2 on UNIX platforms allows remote attackers to cause a denial of service (memory consumption) via a crafted regular expression, as demonstrated by a memory-exhaustion attack against a machine running a named process (CVE-2013-2266).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.