Scientific Linux Security Update : bind on SL6.x i386/x86_64
Low Nessus Plugin ID 72084
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA denial of service flaw was found in the way BIND handled queries for NSEC3-signed zones. A remote attacker could use this flaw against an authoritative name server that served NCES3-signed zones by sending a specially crafted query, which, when processed, would cause named to crash. (CVE-2014-0591)
After installing the update, the BIND daemon (named) will be restarted automatically.
SolutionUpdate the affected packages.